[tac_plus] Re: Bug in current tac_plus

[john heasley]

Fri, Mar 02, 2007 at 02:38:30PM +0100, Josef Voggesser:
> Hi folks, 
> 
> a few weeks ago I found your project with the acl-enhancement on the cisco 
> tacacs server.
> Testing your server for my needs I noticed a little bug in the current 
> version.
> 
> 
> Logging to syslog doesn't continuously work with the configured 
>            logging="local6" 
> in my tacacs.cfg - file. 
> 
> A debug on syslog (see attachment) showed:
> - after having read tacacs.cfg the loglevel changes to local6 --> correct
> - after "backgrounded" the loglevel changes to "daemon.debug" or 
> "daemon.info"  --> incorect
> 
> I asked our student Timo Vanoni to examine this malfunction and - being a 
> clever boy - he found the bug. 
> 
> In the attachment you can see his changes on three files.
> I think this could also help other users.

Thanks for the bug fix!

> One question or maybe suggest for improvement: 
> As I use two separate log files for tac_plus, I don't need user related 
> log messages in syslog.
> Daemon related log messages are still welcome.
> Is it possible to keep user related log messages away from syslog?

There is no separation and no way to exclude messages at the moment.  Perhaps
the messages you see should be reduced to debug-only messages?

> Greetings from Stuttgart, Germany!

Greetings from Portland Oregon!  Missed Stuttgart's Benz museum when I visited
last; I'll have to visit again.