On Mon, 2004-02-16 at 14:45, Paulo Fragoso wrote:
> Are there any attribute for stroe crypted password in database and works
> with mschap? Now, only clear text password stored in radcheck table
> works with mschap:
No.
CHAP passes a hash of the password and a random challenge across the
wire. In order for the RADIUS server to be able calculate the correct
hash and verify that the authenticating client knows the correct
password it must have access to a plaintext equivalent password.
If using CHAP your authentication does need access to an unencrypted
form of the password. This is a restriction of the CHAP protocol.
Nigel.
--
[ Nigel Metheringham [EMAIL PROTECTED] ]
[ - Comments in this message are my own and not ITO opinion/policy - ]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
