Mysql problem

Alan DeKok aland at ox.org
Thu Mar 16 01:47:32 CET 2006


"Fabiano Rodrigo Boscatto" <fabiano.boscatto at pucpr.br> wrote:
> Hi there, i have freeradius working fine with mysql authentication. The
> problem is that the User-Password is stored in mysql table as clear text. Is
> there a way to crypt that?

  Change User-Password to Crypt-Password, and encrypt the password
with the Unix crypt() tool.

  Then CHAP & MS-CHAP stop working.

  If you want to encrypt the password with some kind of key, and then
make the key available to FreeRADIUS too, that might be useful.  Maybe.

  But it's not as useful as it might first look.  You're better off
controlling access to the entire MySQL DB, which contains a lot more
security information than the clear-text password.

  Alan DeKok.



More information about the Freeradius-Users mailing list