Hi,
Can I change the authentication protocol for any other or the Openser authenticate only with the digest? The Digest needs that the password in the DB stay in clear text and its not good.
Thanks.
--------------------------------- O Yahoo! está de cara nova. Venha conferir!
Artur Hayne writes:
The Digest needs that the password in the DB stay in clear text and its not good.
that is not true. if you use freeradius, you can store password in md5 format using
digest { enc_mode=yes }
there is an email about that on ser or openser mailing list, but i was not able to find it with google. try hard, and you find it.
-- juha
Juha Heinanen wrote:
Artur Hayne writes:
The Digest needs that the password in the DB stay in clear text and its not good.
that is not true. if you use freeradius, you can store password in md5 format using
digest { enc_mode=yes }there is an email about that on ser or openser mailing list, but i was not able to find it with google. try hard, and you find it.
-- juha
They have now incorporated this functionality into the released freeradius digest module (as of 1.1.2 i believe)
All that needs to be done is to change the password attribute for the account from "User-Password" to "Digest-HA1"
But I will have that to recadastrate the users again in the DB, wont I? Im using Active Directory from windows 2003 server.
Juha Heinanen jh@tutpro.com escreveu: Artur Hayne writes:
The Digest needs that the password in the DB stay in clear text and its not good.
that is not true. if you use freeradius, you can store password in md5 format using
digest { enc_mode=yes }
there is an email about that on ser or openser mailing list, but i was not able to find it with google. try hard, and you find it.
-- juha
--------------------------------- O Yahoo! está de cara nova. Venha conferir!
Hello,
the digest is the mechanism required by the SIP RFC. There is no other authentication algorithm in OpenSER. You can avoid storing the plan tezt by having instead the HA1 string which is md5 over username, password and realm.
Cheers, Daniel
On 10/03/06 23:59, Artur Hayne wrote:
Hi,
Can I change the authentication protocol for any other or the Openser authenticate only with the digest? The Digest needs that the password in the DB stay in clear text and its not good.
Thanks.
O Yahoo! está de cara nova. Venha conferir
http://us.rd.yahoo.com/mail/br/tagline/spirit/*http://br.yahoo.com!
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users
-
Artur Hayne -
Daniel-Constantin Mierla -
Juha Heinanen -
Tavis P