MS-CHAP2-Request is rejected

Alan DeKok aland at deployingradius.com
Mon May 20 19:24:46 CEST 2019



> On May 20, 2019, at 1:20 PM, Manoel bezerra <maneo.ufrn at gmail.com> wrote:
> 
> but it is not advisable to store clear text passwords

  It's 2019.  NT hashed passwords are entirely equivalent to clear text passwords.  Thinking otherwise is just security theatre.

  Among other references:

https://www.theregister.co.uk/2019/02/14/password_length/

 "Use an 8-char Windows NTLM password? Don't. Every single one can be cracked in under 2.5hrs"

  Use *real* security.  Not fake security.

  Alan DeKok.





More information about the Freeradius-Users mailing list