FreeRadius + MySQL - Crypt-Passwrd in radcheck table
Alan DeKok
aland at deployingradius.com
Mon Feb 19 09:45:28 CET 2007
Nataniel Klug wrote:
> Into radcheck table I have:
>
> mysql> SELECT * FROM radcheck;
> +----+----------+----------------+----+----------------------------------+
> | id | UserName | Attribute | op | Value |
> +----+----------+----------------+----+----------------------------------+
> | 1 | teste | Crypt-Password | == | 42cbf4730aeac1d645324d4818104826 |
> +----+----------+----------------+----+----------------------------------+
Use ':=', not '=='. See the rlm_sql documentation for why.
> The password was encrypted using PHP MD5 command and should be 8872.
> But when I use a radtest command the respose of my Radius is:
Hmm.. Crypt-Password is for Unix crypt'd passwords, not MD5 hashed
passwords.
> I made the same in debug mode and radius just not get the password.
> I think it is not testing the 8872 password to see if it matches de MD5
> crypt. I tryed with "42cbf4730aeac1d645324d4818104826" as a password and
> it returned OK for the request. How can I do this work? I need that into
> MySQL table I have a crypted password (for security reasons)
I disagree, but that's another story.
> and I need
> that my clients can put a simple text password.
In 1.1.4, you can put this into SQL:
Password-With-Header := "{md5}42cbf4730aeac1d645324d4818104826"
That should work with the default config.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
More information about the Freeradius-Users
mailing list