Crypt Passwords in SQL

Kenneth Marshall ktm at rice.edu
Thu Nov 18 15:40:26 CET 2010


On Wed, Nov 17, 2010 at 05:00:19PM -0500, William wrote:
> On Wednesday, November 17, 2010 04:24:32 pm Kenneth Marshall wrote:
> > On Wed, Nov 17, 2010 at 04:15:47PM -0500, William wrote:
> > > Greetings,
> > > 
> > >   First, Thanks Alan DeKok.  That was exactly what I needed for
> > > 
> > > NAS_Showt_Name.
> > > 
> > >   Second, I just discovered a new issue.  Not sure if this is a radius or
> > >   a
> > > 
> > > MySQL issue.
> > > 
> > > When I crypt a password (MySQL CRYPT command) the password matches
> > > anything and everything that matches the first 8 characters of the
> > > password.
> > > 
> > > Is this a limitation of Radius crypt or is it a Mysql crypt ?  I need 16+
> > > character password that match.
> > > 
> > > Wm
> > 
> > Crypt has an 8 character limit in its specification. Some screwy
> > systems play tricks like using the first 7 chars + the last char
> > of a string longer than 8 chars (MacOS) instead of just the first
> > 8, but it is still eight chars. You will need to use another
> > encoding system for more characters.
> > 
> 
> What attribute would I use instead of Crypt-Password ?  I tried MD5-Password 
> and a couple of others, but I can find no documentation on anything other than 
> User-Password, Crypt-Password, ClearText-Password, and CHAP-Password.  
> 
> Wm
> 
Crypt-Password just holds the encrypted password. It is up to you
to properly encrypt the password and use it. You just cannot use
the MySQL crypt() function since it has an 8-char password limit.

Ken



More information about the Freeradius-Users mailing list