|
|
Am Montag, den 02.05.2005, 02:53 -0500 schrieb T. Heckler: > Does any one have a plugin or able to compile a script for use with > openvpn to allow the server to use a clear text file containing > usernames and passwords to authenticate? > > My reason for using such an insecure method is because I run openvpn as > a server on a windows platform using certs, but I am unable to use PAM > to authenticate with passwords too. The passwords can be stored in > clear text on the server because it will be used as a secondary form of > authentication along with the cert, and it is easy for the admin to > change if a user needs to be temporarily denied. > > Any help (beyond the obvious advice to install run it on *nix instead) > would be greatly appreciated. Hi Tim, I don't know if there is such a script. But with the auth-user-pass- verify option you can use any script - and it shouldn't be that hard to write such an script. If have knowledge in perl/python/ruby for example this should be done in less than 20 minutes. One further hint: you don't have to use clear text passwords. You can use a "secure" hash algorithm like sha1 to save the passwords. Your password verify script should compute also the hash of the given password and compare it to the saved hash. This adds only little complexity to your script but gains a lot of security. greetings leh ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-05/msg00005.html on line 205 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-05/msg00005.html on line 205 |