[RADIATOR] Feature request - Different encryption methods in AuthBy UNIX

Johnson, Neil M neil-johnson at uiowa.edu
Mon Nov 2 12:09:33 CST 2015


Radiator 4.16 on the test box and Radiator 4.13 in production.

It appears the password is in SHA-512 format ($6$ prefix), but it didn’t work on the test box until I ran a python script uses the following line to encrypt the password:

encrypted_password = crypt.crypt(raw_passwd1, salt=crypt.METHOD_SHA512)

And then manually copied it into the /etc/shadow file.

Here is the password entry for a dummy account I created on the test box:

$6$rMzuK3lt$OTG.nVZjYW6E4jWjQJ3DVQgpEPoSSy6p6b34p1nx5w3b7NKfTAWKKF0xvUGPeiM9PLSc3z83uD8JcKzzjU6951

password is “fredsmed"

-Neil

-- 
Neil Johnson
Network Engineer
The University of Iowa
Phone: 319 384-0938
Fax: 319 335-2951
E-Mail: neil-johnson at uiowa.edu



> On Nov 2, 2015, at 1:33 AM, Tuure Vartiainen <vartiait at open.com.au> wrote:
> 
> Hi,
> 
>> On 30 Oct 2015, at 20:32, Johnson, Neil M <neil-johnson at uiowa.edu> wrote:
>> 
>> For instance I’m testing RADIATOR on an Ubuntu Server and <AuthBy UNIX> doesn’t work because the Ubuntu uses a different hash/encryption method in their /etc/shadow file.
>> 
>> If I manually encrypt the password with the same method as used by <AuthByUNIX> and put it in the /etc/shadow file  it will then work, but that means that users can’t change their passwords from the command prompt.
>> 
> 
> what version of Radiator are you running and which password encryption method are you using?
> 
> Since Radiator 4.13 there has been a support for e.g. SHA-512 passwords (“$6$” prefix in shadow file).
> 
> AuthBy UNIX supports all the same password formats which Radiator suppports.
> 
> 
> BR
> -- 
> Tuure Vartiainen <vartiait at open.com.au>
> 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
> NetWare etc.
> 



More information about the radiator mailing list