Question about FreeRadius client programming
Hello, I am using the freeRadius client sample to do my own client and it appears that the request sent by this client contains a non crypted password. (I checked with Wireshark). Where can I find the documentation about the way to make the password being crypter ? Did I forgot something ? My source is below. Thanks a lot ! rh = rc_new(); rh = rc_config_init(rh); rc_add_config(rh, "auth_order", "radius", "config", 0); rc_add_config(rh, "login_tries", "4", "config", 0); rc_add_config(rh, "dictionary", "......./dictionary", "config", 0); rc_add_config(rh, "seqfile", "........./radius.seq", "config", 0); rc_add_config(rh, "radius_retries", "3", "config", 0); rc_add_config(rh, "radius_timeout", "5", "config", 0); rc_add_config(rh, "acctserver", "my_ip:my_port:my_secret", "config", 0); rc_read_dictionary(rh, rc_conf_str(rh, "dictionary")); rc_avpair_add(rh, &send, PW_USER_NAME, "my_login", -1, 0); rc_avpair_add(rh, &send, PW_CHAP_PASSWORD, "my_pwd", -1, 0); rc_auth(rh, 0, send, &received, msg);
Alexandre Harly wrote:
I am using the freeRadius client sample to do my own client and it appears that the request sent by this client contains a non crypted password. (I checked with Wireshark).
Did you give the RADIUS shared secret to wireshark? If so, it will decrypt the password, and then show it to you. Alan DeKok.
No I didn't give Wireshark the secret and actually the password is in clear in the raw UDP frame. On Tue, Jan 7, 2014 at 3:38 PM, Alan DeKok <aland@deployingradius.com>wrote:
Alexandre Harly wrote:
I am using the freeRadius client sample to do my own client and it appears that the request sent by this client contains a non crypted password. (I checked with Wireshark).
Did you give the RADIUS shared secret to wireshark? If so, it will decrypt the password, and then show it to you.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (2)
-
Alan DeKok -
Alexandre Harly