(RADIATOR) AuthBy SQL Implicite password encryption

James Nelson radiator at isleofatlantis.net
Tue Apr 22 14:13:19 CDT 2003


That worked beautifully (I am using mySQL, btw).  Thanks!

::James Nelson

----- Original Message -----
From: "Mike McCauley" <mikem at open.com.au>
To: "Hugh Irvine" <hugh at open.com.au>; "James Nelson"
<jamesn at isleofatlantis.net>
Cc: <radiator at open.com.au>
Sent: Monday, April 21, 2003 9:40 PM
Subject: Re: (RADIATOR) AuthBy SQL Implicite password encryption


> Hello James,
>
> On Sat, 19 Apr 2003 09:52 am, Hugh Irvine wrote:
> > Hello James -
> >
> > The only way is to prepend "{MD5}" to the strings in the database.
> >
> > I have copied this mail to Mike as he may have another idea (its a long
> > weekend here though, so he won't see this until the middle of next
> > week).
>
> There is another way that does not require you to change the database. You
can
> do the prepend in the SQL query, using your SQL servers string
manipulation.
>
> You dont say what SQL server you are using, but with mysql, the SQL query
has
> to end up looking something like this:
>
> select CONCAT('{MD5}', PASS_WORD), etc etc etc
>
> You can do similar things with most other SQL servers, but with differeing
> syntax.
>
> Cheers.
>
> >
> > regards
> >
> > Hugh
> >
> >
> > On Saturday, Apr 19, 2003, at 06:24 Australia/Melbourne, James Nelson
> >
> > wrote:
> > > I am trying to setup Radiator to authenticate off of our SQL database.
> > >  The
> > > password field is currently stored as an MD5 hash, and the only way
> > > I've
> > > found to get Radiator to authenticate is to prepend "{MD5}" to the
> > > passwords.  Is there anyway to get Radiator to read it this way
> > > without the
> > > tag?  Add something to the config maybe?  Or modify the AuthSelect
> > > query?
> > >
> > > Thanks in advance,
> > >
> > > ::James Nelson
> > >
> > > ===
> > > Archive at http://www.open.com.au/archives/radiator/
> > > Announcements on radiator-announce at open.com.au
> > > To unsubscribe, email 'majordomo at open.com.au' with
> > > 'unsubscribe radiator' in the body of the message.
> >
> > NB: have you included a copy of your configuration file (no secrets),
> > together with a trace 4 debug showing what is happening?
>
> --
> Mike McCauley                               mikem at open.com.au
> Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
> 24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
> Phone +61 3 9598-0985                       Fax   +61 3 9598-0955
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP etc on Unix, Windows, MacOS etc.
>

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list