Problem with Digest/OpenSER/Radius

[Alan DeKok]

Dariusz Dwornikowski wrote:
> as i understand, I get Digest of a triple:
> 
> user:realm:password. This is MD5 hashed.

  Then you don't have the passwords stored in MD5 hashed form.  The MD5
hash includes *more* than just the password.

  Please be specific in describing what you're doing.  It matters a LOT.

> Radius gets it and takes the same from db and calculates it compares  
> and says Access-Accept or Reject. There is no way in my mind to have  
> my passwords not in cleat text in db. Am i correct?

  You are almost always better off storing clear-text passwords in the DB.

  Alan DeKok.
--
  http://deployingradius.com       - The web site of the book
  http://deployingradius.com/blog/ - The blog