[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: Freeradius and OpenLDAP authentication with hashed passwords
From:       Alan DeKok <aland () deployingradius ! com>
Date:       2008-03-31 18:00:20
Message-ID: 47F126B4.9040904 () deployingradius ! com
[Download RAW message or body]

mel wrote:
> A bit clearer now. So you're saying that I should use:
> 
>  radtest testuser {SHA}... <radiusserver> 0 <secret>

  No.  The *client* is not the *server*.  The client sends a clear-text
password to the server.  The server looks up the user in a database, and
(perhaps) finds a SHA hashed password.  The server then SHA hashes the
password supplied by the client, and compares it to the SHA password
from the database.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]