help-gnu-radius
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Help-gnu-radius] Radius DOES NOT work with MD5 hashed password

From: Sergey Poznyakoff
Subject: Re: [Help-gnu-radius] Radius DOES NOT work with MD5 hashed password
Date: Sun, 03 Aug 2003 10:48:17 +0300 
Hi,

> Is there anything can be done for the RADIUS NOT to pass clear text password
> to mySql over the wire?

As far as I know, the MySQL protocol does not include provisions for
encryption. Here's what the MySQL docs say on the subject:

  If the connection between the client and the server goes through an
  untrusted network, you should use an SSH tunnel to encrypt the
  communication.

  All other information is transferred as text that can be read by
  anyone who is able to watch the connection.  If you are concerned
  about this, you can use the compressed protocol (in MySQL Version
  3.22 and above) to make things much harder.  To make things even
  more secure you should use `ssh' (see `http://www.cs.hut.fi/ssh').
  With this, you can get an encrypted TCP/IP connection between a
  MySQL server and a MySQL client.
  
For more information, see mysql.info, node "Security".

Regards,
Sergey
reply via email to
[Prev in Thread] Current Thread [Next in Thread]