Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
FreeRadius password storing
« previous
next »
Print
Pages: [
1
]
Author
Topic: FreeRadius password storing (Read 1520 times)
klaas
Newbie
Posts: 12
Karma: 0
FreeRadius password storing
«
on:
April 30, 2021, 03:51:22 pm »
Hi,
I have a fully functioning FreeRadius OPNsense plugin running for my VPN customers, but I don't like the fact that passwords are by default stored as clear text in the /usr/local/etc/raddb/users file. I am using the VLAN and network attributes of the FreeRadius plugin, so its not an option to use an external system.
What are my options to locally store passwords hashed or encrypted on the OPNsense firewall and still be able to use Network/VLAN attribute?
/Klavs
Logged
klaas
Newbie
Posts: 12
Karma: 0
Re: FreeRadius password storing
«
Reply #1 on:
April 30, 2021, 07:54:46 pm »
Ideally it would be nice if it could be somehow changed to a SHA256 hash or better
testuser6 Sha2-Password := "fdf4344add3e9931cb5b487f6ea3b108ba4518507ff3a6e0a97d39625c795627"
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: FreeRadius password storing
«
Reply #2 on:
April 30, 2021, 07:56:43 pm »
Encrypted auth usually required plain password. Why is this a risk? No one but you should have Access to filesystem
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
FreeRadius password storing