(RADIATOR) AuthBy SQL Implicite password encryption

Mike McCauley mikem at open.com.au
Mon Apr 21 21:40:02 CDT 2003 

Hello James,

On Sat, 19 Apr 2003 09:52 am, Hugh Irvine wrote:
> Hello James -
>
> The only way is to prepend "{MD5}" to the strings in the database.
>
> I have copied this mail to Mike as he may have another idea (its a long
> weekend here though, so he won't see this until the middle of next
> week).

There is another way that does not require you to change the database. You can 
do the prepend in the SQL query, using your SQL servers string manipulation.

You dont say what SQL server you are using, but with mysql, the SQL query has 
to end up looking something like this:

select CONCAT('{MD5}', PASS_WORD), etc etc etc

You can do similar things with most other SQL servers, but with differeing 
syntax.

Cheers.

>
> regards
>
> Hugh
>
>
> On Saturday, Apr 19, 2003, at 06:24 Australia/Melbourne, James Nelson
>
> wrote:
> > I am trying to setup Radiator to authenticate off of our SQL database.
> >  The
> > password field is currently stored as an MD5 hash, and the only way
> > I've
> > found to get Radiator to authenticate is to prepend "{MD5}" to the
> > passwords.  Is there anyway to get Radiator to read it this way
> > without the
> > tag?  Add something to the config maybe?  Or modify the AuthSelect
> > query?
> >
> > Thanks in advance,
> >
> > ::James Nelson
> >
> > ===
> > Archive at http://www.open.com.au/archives/radiator/
> > Announcements on radiator-announce at open.com.au
> > To unsubscribe, email 'majordomo at open.com.au' with
> > 'unsubscribe radiator' in the body of the message.
>
> NB: have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?

-- 
Mike McCauley                               mikem at open.com.au
Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
Phone +61 3 9598-0985                       Fax   +61 3 9598-0955

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, 
TTLS, PEAP etc on Unix, Windows, MacOS etc.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list