Jyri Hovila [Turvamies.fi]
2015-Jan-10 00:07 UTC
Moving or "upgrading" from MD5 to SSHA512
Hello, world! I have a long-running Dovecot & Postfix installation using PostgreSQL back-end. Until now I've been using MD5 hashing but would like to "upgrade" to the salted SSHA512. Is there a way to configure Dovecot so that it would automatically detect the type of the hash stored in the database, so that users who have changed their password (and thus being hashed with SHA512) and users still having an MD5 hash would both be able to authenticate at the same time? Yours, Jyri -- +358-50-5632104 (24/7) +358-46-8822157 (backup) jyri.hovila at turvamies.fi
On 1/9/2015 4:07 PM, Jyri Hovila [Turvamies.fi] wrote:> Hello, world! > > I have a long-running Dovecot & Postfix installation using PostgreSQL > back-end. > > Until now I've been using MD5 hashing but would like to "upgrade" to > the salted SSHA512. > > Is there a way to configure Dovecot so that it would automatically > detect the type of the hash stored in the database, so that users who > have changed their password (and thus being hashed with SHA512) and > users still having an MD5 hash would both be able to authenticate at > the same time?Have a read of this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes
Jyri Hovila [Turvamies.fi]
2015-Jan-10 10:45 UTC
Moving or "upgrading" from MD5 to SSHA512
Hi!> Have a read of this:> http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemesIn fact no. Thanks! - Jyri -- +358-50-5632104 (24/7) +358-46-8822157 (backup) jyri.hovila at turvamies.fi
In MySQL we use default_pass_scheme = CRYPT Assuming this is not a 10yo box, and your libs are modern, this allow for md5/shaxxx/whatever Dont touch postgresql so never bothered to look, but I guess it accepts the same parameter. On 1/10/15, Jyri Hovila [Turvamies.fi] <jyri.hovila at turvamies.fi> wrote:> Hello, world! > > I have a long-running Dovecot & Postfix installation using PostgreSQL > back-end. > > Until now I've been using MD5 hashing but would like to "upgrade" to the > salted SSHA512. > > Is there a way to configure Dovecot so that it would automatically detect > the type of the hash stored in the database, so that users who have changed > their password (and thus being hashed with SHA512) and users still having an > MD5 hash would both be able to authenticate at the same time? > > Yours, > > Jyri > -- > +358-50-5632104 (24/7) > +358-46-8822157 (backup) > jyri.hovila at turvamies.fi >
Jyri Hovila [Turvamies.fi]
2015-Jan-13 22:08 UTC
Moving or "upgrading" from MD5 to SSHA512
Hi! My "no" referred to the fact that I had not read the article before. =D Thanks for linking it - I'm sure it will be very useful. I've been terribly busy during the last couple of days and have therefore not been able to comment much on the list. I'll come back there as soon as things calm down a bit. =) Yours, Jyri -- +358-50-5632104 (24/7) +358-46-8822157 (backup) jyri.hovila at turvamies.fi
On 1/14/15, Jyri Hovila [Turvamies.fi] <jyri.hovila at turvamies.fi> wrote:> Hi! > > My "no" referred to the fact that I had not read the article before. =D > > Thanks for linking it - I'm sure it will be very useful. > > I've been terribly busy during the last couple of days and have therefore > not been able to comment much on the list. I'll come back there as soon as > things calm down a bit. =) >So you have this sorted now? (Sorry, was in transit, I'm back home in Australia for next few weeks on leave YAY)
Reasonably Related Threads
- Moving or "upgrading" from MD5 to SSHA512
- Moving or "upgrading" from MD5 to SSHA512
- [PATCH 0/5] ARM NEON optimization for samplerate converter
- [PATCH] resample: Fix input indexing bug from interleaved functions
- Compilation failure in resample_neon.h on aarch64