15 Mar
2006
15 Mar
'06
7:47 p.m.
"Fabiano Rodrigo Boscatto" <fabiano.boscatto@pucpr.br> wrote:
Hi there, i have freeradius working fine with mysql authentication. The problem is that the User-Password is stored in mysql table as clear text. Is there a way to crypt that?
Change User-Password to Crypt-Password, and encrypt the password with the Unix crypt() tool. Then CHAP & MS-CHAP stop working. If you want to encrypt the password with some kind of key, and then make the key available to FreeRADIUS too, that might be useful. Maybe. But it's not as useful as it might first look. You're better off controlling access to the entire MySQL DB, which contains a lot more security information than the clear-text password. Alan DeKok.