Use your own salt? (see crypt() documentation, in a perl manual)
-a
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of Mike McCauley
> Sent: woensdag 21 maart 2001 13:30
> To: [EMAIL PROTECTED]
> Subject: (RADIATOR) Changing Password by users while Authenticating via
> mysql
>
>
>
> --- Forwarded mail from [EMAIL PROTECTED]
>
> Date: Wed, 21 Mar 2001 00:10:23 +1100 (EST)
> From: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: BOUNCE [EMAIL PROTECTED]: Non-member submission
> from ["Mohammad
> Tawrit" <[EMAIL PROTECTED]>]
>
> >From mikem Wed Mar 21 00:10:18 2001
> Received: by oscar.open.com.au (8.9.0/8.9.0) id AAA08435
> for [EMAIL PROTECTED]; Wed, 21 Mar 2001 00:10:13 +1100 (EST)
> >Received: from mail.bttb.net.bd (dns.bttb.net [209.58.24.4]) by
> perki.connect.com.au with ESMTP id XAA14575
> (8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Tue, 20 Mar 2001
> 23:59:19 +1100
> (EST)
> Received: from mail.bttb.net.bd (dns.bttb.net [209.58.24.4]) by
> perki.connect.com.au with ESMTP id XAA14575
> (8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Tue, 20 Mar 2001
> 23:59:19 +1100
> (EST)
> Received: from compaq ([209.58.24.249]) by mail.bttb.net.bd (AIX4.2/UCB
> 8.7/8.7) with SMTP id SAA32026 for <[EMAIL PROTECTED]>; Tue,
> 20 Mar 2001
> 18:53:26 +0600 (TASHST)
> Message-ID: <000901c0b0d8$381998c0$[EMAIL PROTECTED]>
> From: "Mohammad Tawrit" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: Changing Password by users while Authenticating via mysql
> Date: Tue, 20 Mar 2001 06:53:44 +0600
> MIME-Version: 1.0
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Mailer: Microsoft Outlook Express 5.00.2615.200
> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200
> Content-Type: multipart/mixed;
> boundary="----=_NextPart_000_0005_01C0B10A.81876FA0"
>
> This is a multi-part message in MIME format.
>
> ------=_NextPart_000_0005_01C0B10A.81876FA0
> Content-Type: multipart/alternative;
> boundary="----=_NextPart_001_0006_01C0B10A.81876FA0"
>
>
> ------=_NextPart_001_0006_01C0B10A.81876FA0
> Content-Type: text/plain;
> charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> We are one of the major ISPs in Bangladesh. We are using Radiator-2.17 =
> on linux 6 Platform.=20
>
> We are going to install prepaid Internet Service. As per your advice we =
> have successfully installed mysql server and prepaid service is on. The =
> problem is while changing the password by users. We have used encrypt() =
> function for keeping compatibility with our old linux 5.0 flat file =
> authentication system. In the CGI perl script while we are giving the =
> following command:
>
> update SUBSCRIBERS set password=3Dencrypt('$input{'newpasswd'}') where =
> username=3D'$input{'userid'}' and =
> password=3Dencrypt('$input{'oldpasswd'}')
>
> it is not working because encrypt() function gives different output for =
> same password. But, with MD5 I am experiencing no problem. Can you guide =
> me how to authenticate the user while he wants to change his password =
> through CGI script with encrypt() function.
>
> I am attaching the configuration file for your convenience.
>
>
> Tawrit
>
> ------=_NextPart_001_0006_01C0B10A.81876FA0
> Content-Type: text/html;
> charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
> <HTML><HEAD>
> <META content=3D"text/html; charset=3Diso-8859-1" =
> http-equiv=3DContent-Type>
> <META content=3D"MSHTML 5.00.2614.3500" name=3DGENERATOR>
> <STYLE></STYLE>
> </HEAD>
> <BODY bgColor=3D#ffffff>
> <DIV><FONT face=3DArial size=3D2>We are one of the major ISPs in =
> Bangladesh. We are=20
> using Radiator-2.17 on linux 6 Platform. </FONT></DIV>
> <DIV><FONT face=3DArial size=3D2></FONT> </DIV>
> <DIV><FONT face=3DArial size=3D2>We are going to install prepaid =
> Internet Service.=20
> As per your advice we have successfully installed mysql server and =
> prepaid=20
> service is on. The problem is while changing the password by =
> users. We have=20
> used encrypt() function for keeping compatibility with our old linux 5.0 =
> flat=20
> file authentication system. In the CGI perl script while we are giving =
> the=20
> following command:</FONT></DIV>
> <DIV> </DIV>
> <DIV><FONT face=3DArial size=3D2>update SUBSCRIBERS set=20
> password=3Dencrypt('$input{'newpasswd'}') where =
> username=3D'$input{'userid'}' and=20
> password=3Dencrypt('$input{'oldpasswd'}')</FONT></DIV>
> <DIV> </DIV>
> <DIV><FONT face=3DArial size=3D2>it is not working because encrypt() =
> function gives=20
> different output for same password. But, with MD5 I am experiencing no =
> problem.=20
> Can you guide me how to authenticate the user while he wants to change =
> his=20
> password through CGI script with encrypt() function.</FONT></DIV>
> <DIV> </DIV>
> <DIV><FONT face=3DArial size=3D2>I am attaching the configuration file =
> for your=20
> convenience.</FONT></DIV>
> <DIV> </DIV>
> <DIV> </DIV>
> <DIV><FONT face=3DArial size=3D2>Tawrit</FONT></DIV></BODY></HTML>
>
> ------=_NextPart_001_0006_01C0B10A.81876FA0--
>
> ------=_NextPart_000_0005_01C0B10A.81876FA0
> Content-Type: application/octet-stream;
> name="mysql.cfg"
> Content-Transfer-Encoding: quoted-printable
> Content-Disposition: attachment;
> filename="mysql.cfg"
>
> # mysql.cfg=0A=
> #=0A=
> # Example Radiator configuration file that allows you to=0A=
> # authenticate from an SQL database.=0A=
> # With Radiator you can interface with almost any databse schema,=0A=
> # and there are many more configurable parameters that allow you=0A=
> # to control database fallback, select statements, column names=0A=
> # and arrangements etc etc etc.=0A=
> # See the reference manual for more details.=0A=
> # This is a very simple exmaple to get you started. It will=0A=
> # work with the tables created by the goodies/*.sql scripts.=0A=
> #=0A=
> # You should consider this file to be a starting point only=0A=
> # $Id: sql.cfg,v 1.5 2000/11/07 21:18:05 mikem Exp $=0A=
> =0A=
> Foreground=0A=
> LogStdout=0A=
> LogDir .=0A=
> DbDir .=0A=
> Trace 4=0A=
> LogFile /var/log/%Y-radius.log=0A=
> =0A=
> # You will probably want to change this to suit your site.=0A=
> <Client DEFAULT>=0A=
> Secret mysecret=0A=
> DupInterval 0=0A=
> </Client>=0A=
> =0A=
> # You can put client details in a database table=0A=
> # and get their details from there with something like this:=0A=
> <ClientListSQL>=0A=
> DBSource dbi:mysql:radius=0A=
> DBUsername radius =0A=
> DBAuth password=0A=
> </ClientListSQL>=0A=
> =0A=
> # This will authenticate users from SUBSCRIBERS=0A=
> <Realm DEFAULT>=0A=
> <AuthBy SQL>=0A=
> =0A=
> # Adjust DBSource, DBUsername, DBAuth to suit your DB=0A=
> =0A=
> DBSource dbi:mysql:radius=0A=
> DBUsername radius=0A=
> DBAuth password=0A=
> =0A=
> =0A=
> =0A=
> AuthSelect select PASSWORD, CHECKATTR, REPLYATTR from
> SUBSCRIBERS where
> =
> username=3D'%n' and total_usage<Maximum_use=0A=
> =0A=
> AuthColumnDef 0, Encrypted-Password, check=0A=
> AuthColumnDef 1, GENERIC, check=0A=
> AuthColumnDef 2, GENERIC, reply=0A=
> =0A=
> =0A=
> # You may want to tailor these for your ACCOUNTING table=0A=
> # You can add your own columns to store whatever you like=0A=
> AccountingTable ACCOUNTING=0A=
> AcctColumnDef USERNAME,User-Name=0A=
> AcctColumnDef TIME_STAMP,Timestamp,integer-date=0A=
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type=0A=
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer=0A=
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer=0A=
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer=0A=
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id=0A=
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer=0A=
> AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause=0A=
> AcctColumnDef NASIDENTIFIER,NAS-Identifier=0A=
> AcctColumnDef NASPORT,NAS-Port,integer=0A=
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address=0A=
> =0A=
> AcctSQLStatement update SUBSCRIBERS set =
> TOTAL_USAGE=3DSUBSCRIBERS.TOTAL_USAGE+%{Acct-Session-Time} where =
> username=3D'%n' and SUBSCRIBERS.total_usage<SUBSCRIBERS.maximum_use=0A=
> =0A=
> AcctSQLStatement update SUBSCRIBERS set =
> replyattr=3Dconcat("Framed-Protocol=3DPPP, Shiva-User-Attributes =3D =
> /di, Session-Timeout =3D ", =
> SUBSCRIBERS.maximum_use-SUBSCRIBERS.total_usage) where =
> SUBSCRIBERS.username=3D'%n' =0A=
> =0A=
> =0A=
> =0A=
> # You can arrange to log accounting to a file if the=0A=
> # SQL insert fails with AcctFailedLogFileName=0A=
> # That way you could recover from a broken SQL=0A=
> # server=0A=
> #AcctFailedLogFileName %D/missedaccounting=0A=
> </AuthBy>=0A=
> =0A=
> RejectHasReason=0A=
> </Realm>=0A=
>
> ------=_NextPart_000_0005_01C0B10A.81876FA0--
>
>
>
>
> ---End of forwarded mail from [EMAIL PROTECTED]
>
> --
> Mike McCauley [EMAIL PROTECTED]
> Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
> 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
> Phone +61 3 9598-0985 Fax +61 3 9598-0955
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
> on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
> ===
> Archive at http://www.starport.net/~radiator/
> Announcements on [EMAIL PROTECTED]
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
>
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
