CHAP using /etc/passwd

Derek (freebsd lists) 482254ac at razorfever.net
Mon Jun 22 13:23:20 UTC 2020


On 2020-06-21 1:23 p.m., The Doctor via freebsd-questions wrote:
> Is there a way to use CHAP plugged into /etc/passwd?
> 

"CHAP requires that both the client and server know the plaintext of the 
secret."

/etc/(master.)passwd uses a one-way password hash.  The server cannot 
know the secret.  You'll need a separate database.

It might be possible to use a pam module to use either CHAP directly, or 
reference whatever second database you have, so you still only have one 
set of passwords.  I have no specific suggestions here though.

Derek


More information about the freebsd-questions mailing list