[OpenSER-Users] Store Encypted Pwds in MySQL DB

Bogdan-Andrei Iancu bogdan at voice-system.ro
Wed Feb 6 12:40:16 CET 2008


Hi Ali,

openser supports hashed passwd (instead of clear text) in DB. Actually, 
instead of passwd, the DB will contain the HA1 (see auth digest RFC).

You need to set:
   

modparam("auth_db", "password_column", "ha1")
modparam("auth_db", "calculate_ha1", 0)


If you use openserctl to insert the users, be sure you set:
    STORE_PLAINTEXT_PW=0

in openserctlrc file

regards,
bogdan

Ali Jawad wrote:
>
> Hi All
>
> I am migrating a couple of thousand users from an old sip server with 
> mysql support to openser with mysql support, the thing is that in the 
> old server the passwords were encrypted using 3DES and stored encypted 
> in the MySQL db ...the old SIP server received the passwords using 
> plaintext converted them to 3DES using perl script and the compared 
> the result to the password stored in the MySQL DB.
>
> Any ideas about how to achieve something like this in OpenSER "? I.e. 
> hash the passwords ? Or any other solution ?
>
> I have seen some hashed entries in the MySQL db could they be used for 
> such purposes ?
>
> Thanks
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Users mailing list
> Users at lists.openser.org
> http://lists.openser.org/cgi-bin/mailman/listinfo/users
>   





More information about the sr-users mailing list