iSCSI - How are CHAP credentials stored?

Hi all,

Apologies if this isn’t the right place for this question.

I’ve been looking into CHAP authentication for iSCSI and was wondering if anyone knows about how the credentials are stored.

The passwords (seem) to just be stored in plaintext, both in iscsid.conf and if using the --show argument when viewing a discovery record using iscisadm.

If this is the case, is there a way to prevent the password being plaintext / viewable? Perhaps a way to hash the passwords instead (although assuming that would require external functionality)

Any insight or pointers would be appreciated thanks :slight_smile: