Re: Clear text passwords

George C. Kaplan [EMAIL PROTECTED] writes: Alan DeKok wrote: Guy Fraser [EMAIL PROTECTED] wrote: You will have to edit the source code to the detail module to make it do what you want. Is that the way it is supposed to be, or is it on a todo list for it to be fixed? Fixed to do what,

Re: Clear text passwords

Bjørn Mork wrote: George C. Kaplan [EMAIL PROTECTED] writes: To not log passwords in the detail file, because it puts them at unnecessary risk of exposure. The detail module logs radius packets. If that's not what you want, then you probably shouldn't be using the detail module (except

RE: Clear text passwords

Yes u can hide or crypt passwords in freeradius, this question was raised in freeradius users mailing list, and if you search archives, the answer is there -Original Message- From: [EMAIL PROTECTED] .org [mailto:[EMAIL PROTECTED] eeradius.org] On Behalf Of Corey Burks Sent: Thursday,

RE: Clear text passwords

To: 'FreeRadius users mailing list' Subject: RE: Clear text passwords Yes u can hide or crypt passwords in freeradius, this question was raised in freeradius users mailing list, and if you search archives, the answer is there -Original Message- From: [EMAIL PROTECTED] .org [mailto:[EMAIL

Re: Clear text passwords

Corey Burks [EMAIL PROTECTED] wrote: In my radiusd.conf file I made the following changes and it is still logging my password clear text password log_auth = no You will have to edit the source code to the detail module to make it do what you want. Alan DeKok. - List

Re: Clear text passwords

On Thu, 2006-23-03 at 17:44 -0500, Alan DeKok wrote: Corey Burks [EMAIL PROTECTED] wrote: In my radiusd.conf file I made the following changes and it is still logging my password clear text password log_auth = no You will have to edit the source code to the detail module to make it

Re: Clear text passwords

Guy Fraser [EMAIL PROTECTED] wrote: You will have to edit the source code to the detail module to make it do what you want. Is that the way it is supposed to be, or is it on a todo list for it to be fixed? Fixed to do what, and why? No, I'm not being dumb, I'd like to see reasons

Re: Clear text passwords

Alan DeKok wrote: Guy Fraser [EMAIL PROTECTED] wrote: You will have to edit the source code to the detail module to make it do what you want. Is that the way it is supposed to be, or is it on a todo list for it to be fixed? Fixed to do what, and why? To not log passwords in the

Re: clear text passwords?

Hi Tim. You can hack the portal to change users's password if they change them on the portal. You could of course make freeradius authenticate your users from the portal database as well. FreeRadius should work fine against MSSQL but I have never tested it myself. The passwords will not be sent

RE: clear text passwords?

Hi yazzy. Wow, thanks for your quick reply! I can bet I saw many of your posts on google too... :) Anyway, just wondering, will it be insecure if the user/passwords are just left in clear text on a server? Actually, I don't really like the idea of having a different user/pass for the radius