[Serusers] Avoiding storing passwords in mysql "subscriber" tablein clear-text

Antonio Rabena antonio at lgatelecom.net
Thu Oct 14 03:31:17 CEST 2004 

You can use ha1.

modparam("auth_db", "calculate_ha1", 0)
modparam("auth_db", "user_column", "username")
modparam("auth_db", "password_column", "ha1")


Dave Bath wrote:

> Hey Karl,
>
>
> It might be possible to use encrypted mysql passwords - someone else 
> on the list seems to have mentioned that it might be possible, but I 
> haven't used this before.  Otherwise, use radius authentication and 
> it's up to you how you get radius to store the passwords (which could 
> be in a mysql database...) hope that helps slightly?!
>
>  
>
> Dave
>
>  
>
> ------------------------------------------------------------------------
>
> From: karl [mailto:ser_newbie at yahoo.com]
> Sent: 13 October 2004 16:28
> To: Dave Bath; serusers at lists.iptel.org
> Subject: RE: [Serusers] Avoiding storing passwords in mysql 
> "subscriber" tablein clear-text
>
>  
>
> Hi Dave,
>
>  
>
> Thanks for your response.  Does this mean that it is not possible to 
> achieve this mysql authentication.  I happen to be using mysql.
>
>  
>
> Thanks once again.
>
>  
>
> Karl 
>
> Dave Bath <dave at fuuz.com> wrote:
>
>     Karl,
>
>      
>
>     You could try using radius authentication.  Just google the
>     archives for some docs on how to use it.
>
>      
>
>     Dave
>
>      
>
>     ------------------------------------------------------------------------
>
>     From: serusers-bounces at lists.iptel.org
>     [mailto:serusers-bounces at lists.iptel.org] On Behalf Of karl
>     Sent: 12 October 2004 08:13
>     To: serusers at lists.iptel.org
>     Subject: [Serusers] Avoiding storing passwords in mysql
>     "subscriber" tablein clear-text
>
>      
>
>     Hi guys,
>
>      
>
>     I would appreciate if someone may help me on the subject.  While
>     still requiring users to be authenticated against user credentials
>     (username, password, realm), on the other hand I want to avoid
>     storing passwords in clear text in mysql "subscriber" table.  Any
>     ideas?
>
>      
>
>     Thank you in advanced.
>
>      
>
>     Best regards,
>
>      
>
>     Karl
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20041014/58eb42fc/attachment.htm>

More information about the sr-users mailing list