(RADIATOR) CHAP

Hugh Irvine hugh at open.com.au
Wed May 16 08:09:23 CDT 2001 

Hello Ingvar -

You can't do it at all - that is why you need the clear text on the 
server end - so you can do the same encryption and compare the 
results.

cheers

Hugh


At 9:08 +0200 16/5/01, Ingvar Berg (EIP) wrote:
>Or rather: you have to be able to decrypt them in Radiator, before 
>using them. I'm not sure if you can do this with a hook, or if you 
>need to hack the basic code in Radiator (i.e. persuade Mike or Hugh 
>to do some fun coding...)
>
>-----Original Message-----
>From: Hugh Irvine [mailto:hugh at open.com.au]
>Sent: den 15 maj 2001 02:54
>To: Anton Krall; radiator at open.com.au
>Subject: Re: (RADIATOR) CHAP
>
>
>
>Hello Anton -
>
>You cannot use CHAP authentication with with encrypted passwords in your
>database. If you want to use encrypted passwords in the database, you will
>have to use PAP authentication. If you want to use CHAP authentication you
>will have to use plaintext passwords in the database.
>
>hth
>
>Hugh
>
>On Tuesday 15 May 2001 08:51, Anton Krall wrote:
>>  Guys.
>>
>>  Im getting this error when trying to autenticate with CHAP:
>>
>>  Mon May 14 17:47:54 2001: DEBUG: Rewrote user name to akrall at mx.inter.net
>>  Mon May 14 17:47:54 2001: DEBUG: Rewrote user name to akrall at mx.inter.net
>>  Mon May 14 17:47:54 2001: DEBUG: Handling request with Handler
>>  'Realm=mx.inter.net' Mon May 14 17:47:54 2001: DEBUG: Rewrote user name to
>>  akrall
>>  Mon May 14 17:47:54 2001: DEBUG: SDBSQLdialup Deleting session for
>>  akrall at mx.inter.net, 10.0.0.0, 1234 Mon May 14 17:47:54 2001: DEBUG: do
>>  query is: delete from RADONLINE where NASIDENTIFIER='10.0.0.0' and
>>  NASPORT=01234
>>
>>  Mon May 14 17:47:54 2001: DEBUG: Handling with Radius::AuthSQL
>>  Mon May 14 17:47:54 2001: DEBUG: Handling with Radius::AuthDBFILE
>>  Mon May 14 17:47:54 2001: DEBUG: Radius::AuthDBFILE looks for match with
>>  akrall Mon May 14 17:47:54 2001: WARNING: Cant use encrypted passwords with
>>  CHAP Mon May 14 17:47:54 2001: DEBUG: Radius::AuthDBFILE REJECT: Bad
>>  Encrypted password Mon May 14 17:47:54 2001: DEBUG: Handling with
>>  Radius::AuthDBFILE
>>  Mon May 14 17:47:54 2001: DEBUG: Radius::AuthDBFILE looks for match with
>>  akrall Mon May 14 17:47:54 2001: INFO: Access rejected for akrall: No such
>>  user Mon May 14 17:47:54 2001: DEBUG: Packet dump:
>>
>>  My password are like this:
>>
>>  user [crypt]HAFJSGFD
>>
>>  Whatst he matter?
>>
>>  Saludos
>>
>>  Anton Krall
>>  Director de Tecnologia
>>  Inter.net Mexico
>>  (www.mx.inter.net)
>>  Email: akrall at team.inter.net
>>  Directo: 5-241-7609
>>  Conmutador: 5-241-7600
>>  Mobile: 044-5105-5160
>>
>>  Outside Mexico:
>>  Office: (525)241-7609
>>  PBX: (525)241-7600
>>  Mobile: (525)105-5160
>===
>Archive at http://www.open.com.au/archives/radiator/
>Announcements on radiator-announce at open.com.au
>To unsubscribe, email 'majordomo at open.com.au' with
>'unsubscribe radiator' in the body of the message.

-- 

NB: I am travelling this week, so there may be delays in our correspondence.

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list