Password Hashed + Salted before authentication with an embedded?script

Matthew Newton mcn4 at
Fri Jan 9 17:54:20 CET 2015

On Fri, Jan 09, 2015 at 09:44:34AM -0700, Robert Graham wrote:
> I believe it is SHA-2 for PCI compliance reasons, and from what I have
> read Freeradius cannot do SHA-2, yet....

In rlm_pap:

commit 5e1c9e1c55157d9774d539d8f9b1e2f4124e75b6
Author: Arran Cudbard-Bell <a.cudbardb at>
Date:   Thu Feb 6 15:50:28 2014 +0000

    Add support for SHA-2 digests



Matthew Newton, Ph.D. <mcn4 at>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at>

More information about the Freeradius-Users mailing list