Help: PAP with Sha1

vishal_nitr vishal_nitr at rediffmail.com
Fri Apr 20 12:09:12 CEST 2012


Hi,    I am using free-radius-2.1.12. My requirement is to change algorithms used in my project to FIPS complaint ones. I see that radius uses MD5 for encoding/decoding passwords. I am using PAP authentication.    In my radius client I changed encoding to SHA1; due to which radius started rejecting auth requests saying password mismatch from rlm_pap which is obvious.     I tried changing few things in lib/radius.c to SHA1 but with no success.
I ran radiusd with -X option and I saw following:With MD5 from client:        User-Name = "vishal"        Calling-Station-Id = "00-23-68-0F-1A-E6"        NAS-Port = 0        NAS-Port-Type = Wireless-802.11        Framed-MTU = 1400        Service-Type = Framed-User        NAS-IP-Address = 127.0.0.1        NAS-Identifier = "ap7131-0F1AE6"        NAS-Port-Id = "0"        User-Password = "vishal123"
With SHA1 from client:        User-Name = "vishal"        Calling-Station-Id = "00-23-68-0F-1A-E6"        NAS-Port = 0        NAS-Port-Type = Wireless-802.11        Framed-MTU = 1400        Service-Type = Framed-User        NAS-IP-Address = 127.0.0.1        NAS-Identifier = "ap7131-0F1AE6"        NAS-Port-Id = "0"        User-Password = "\364~\224-\277\370R,\254\264\20517/\246&"

Please help me change MD5 to Sha1. A quick pointer or exact place to change will help a lot.
Thanks and Regards,

Vishal Kotalwar,
Bangalore-35.

09900055647.


Follow Rediff Deal ho jaye! to get exciting offers in your city everyday.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120420/c0ffaf04/attachment.html>


More information about the Freeradius-Users mailing list