(RADIATOR) Problem with AuthLog SYSLOG - ERR: Error while doing AuthLog SYSLOG: syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm line 110
Martin Wallner
Martin.Wallner at eunet.co.at
Mon Oct 2 03:44:26 CDT 2006
Hello,
Just to 'broaden' the base :-)
It is a general feature of BSD (and, so Darwin :-), to have fixed
keywords for the logging facility...
--------- snip (syslog.conf (5) - NetBSD)-----------------------
The facility describes the part of the system generating the
message, and
is one of the following keywords: auth, authpriv, cron, ftp,
daemon,
kern, lpr, mail, mark, news, syslog, user, uucp and local0 through
local7. These keywords (with the exception of mark) correspond to
the
similar ``LOG_'' values specified to the openlog(3) and syslog(3)
library
routines.
----------------------------------------------------------------
=mw=
> -----Original Message-----
> From: owner-radiator at open.com.au
> [mailto:owner-radiator at open.com.au] On Behalf Of Terry Simons
> Sent: Montag, 02. Oktober 2006 07:37
> To: Hugh Irvine
> Cc: radiator at open.com.au
> Subject: Re: (RADIATOR) Problem with AuthLog SYSLOG - ERR:
> Error while doing AuthLog SYSLOG: syslog: invalid
> level/facility: radius at Radius/AuthLogSYSLOG.pm line 110
>
> Hi Hugh,
>
> After some digging it appears defining custom log facilities
> in Mac OS X may not be allowed. From syslog.conf(5):
>
> The facility describes the part of the system generating the
> message, and
> is one of the following keywords: auth, authpriv, cron,
> daemon, kern,
> lpr, mail, mark, news, syslog, user, uucp and local0
> through local7.
>
> Testing is easily done with the 'logger' command. Something like:
> "logger -p radius.info test" causes the failure to occur with
> the same sort of error.
>
> It should also be mentioned that the BSD variants of syslogd
> do not like spaces in the syslog.conf file - tabs should be
> used instead.
>
> I'll post a note to the darwin developer's list and see if
> anyone there knows whether this is possible or not.
>
> - Terry
>
> On Oct 1, 2006, at 11:26 PM, Hugh Irvine wrote:
>
> >
> > Hi Terry -
> >
> > Both "user" and "localx" are "special" for syslog - specifically
> > "user" is hardwired internally and is what is used as default if
> > nothing else is specified.
> >
> > I suspect "localx" also has some magic happening.
> >
> > This appears to be the case according to "man -s 3 syslog".
> >
> > I suggest you start with a simple Perl script that does logging to
> > syslog for debugging purposes.
> >
> > regards
> >
> > Hugh
> >
> >
> > On 2 Oct 2006, at 14:47, Terry Simons wrote:
> >
> >> Ok, so I tried adding a "foo.*" and that fails in the same
> way that
> >> "radius.*" fails, but I also added a local1.* (which didn't
> >> exist) and that one works...
> >>
> >> Here are the entries in my syslog.conf for reference:
> >>
> >> local1.* /var/log/
> >> radiator/authlog/syslog.log
> >> radius.* /var/log/
> >> radiator/authlog/syslog.log
> >> user.* /var/log/
> >> radiator/authlog/syslog.log
> >> foo.* /var/log/
> >> radiator/authlog/syslog.log
> >>
> >> I'm really not sure what's going on here... I know that other
> >> programs use localX.* and user.*... I wonder if adding these
> >> facilities to /etc/syslog.conf simply isn't enough on Mac OS X...
> >> Perhaps they need to be added to the netinfo database as well...
> >>
> >> I'll do a bit more digging and let you know if I find a solution.
> >>
> >> - Terry
> >>
> >>
> >> On Oct 1, 2006, at 9:56 PM, Terry Simons wrote:
> >>
> >>> Hi,
> >>>
> >>> I'm seeing a problem with AuthLog SYSLOG that, according to the
> >>> manual, should be legal.
> >>>
> >>> I'm getting the following error:
> >>>
> >>> Sun Oct 1 21:51:13 2006: ERR: Error while doing AuthLog SYSLOG:
> >>> syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm
> >>> line 110
> >>>
> >>> My config looks like this:
> >>>
> >>> <AuthLog SYSLOG>
> >>> Identifier AuthLog-SYSLOG
> >>> Facility radius
> >>> Priority info
> >>> LogHost 127.0.0.1
> >>> LogSuccess 1
> >>> LogFailure 1
> >>> SuccessFormat %l,%u,%{Outer-EAP-Id},%N,%
> >>> h,Success,%{Called-St\
> >>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
> >>> FailureFormat %l,%u,%{Outer-EAP-Id},%N,%
> >>> h,Failure,%{Called-St\
> >>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
> >>> </AuthLog>
> >>>
> >>> And the manual indicates that the "Facility radius" line
> should be
> >>> legal:
> >>>
> >>> 5.70.1 Facility
> >>> The name of the syslog facility that will be logged to.
> The default
> >>> is 'user'.
> >>> # Log to the syslog facility called 'radius'
> >>> Facility radius
> >>>
> >>> Maybe I'm doing something wrong?
> >>>
> >>> Thanks,
> >>>
> >>> - Terry
> >>>
> >>> --
> >>> Archive at http://www.open.com.au/archives/radiator/
> >>> Announcements on radiator-announce at open.com.au To
> unsubscribe, email
> >>> 'majordomo at open.com.au' with 'unsubscribe radiator' in
> the body of
> >>> the message.
> >>
> >
> >
> >
> > NB:
> >
> > Have you read the reference manual ("doc/ref.html")?
> > Have you searched the mailing list archive (www.open.com.au/
> > archives/radiator)?
> > Have you had a quick look on Google (www.google.com)?
> > Have you included a copy of your configuration file (no secrets),
> > together with a trace 4 debug showing what is happening?
> >
> > --
> > Radiator: the most portable, flexible and configurable
> RADIUS server
> > anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> > Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER
> > translation agent.
> > -
> > Nets: internetwork inventory and management - graphical,
> extensible,
> > flexible with hardware, software, platform and database
> independence.
> > -
> > CATool: Private Certificate Authority for Unix and
> Unix-like systems.
> >
> >
>
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au To
> unsubscribe, email 'majordomo at open.com.au' with 'unsubscribe
> radiator' in the body of the message.
>
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list