thr3ads.net - dovecot - [Dovecot] SHA512-CRYPT scheme fails password verification [Dec 2013]

If this information is useful, please help other people find it:
Share via:

Jouko Nikula

2013-Dec-25 03:16 UTC

[Dovecot] SHA512-CRYPT scheme fails password verification

Hello,

If I try to use the crypt schemes provided by libc. I fail as follows:

jnikula at jlaptop:~/$ doveadm pw -s SHA512-CRYPT -p 123456
{SHA512-CRYPT}$6$to2umWLDtqvzS8SV$ZGpBeGNKuUN/2HKG6I2BEAt.Gzrz/y.SZDkos2GT2ik8obnp3XCFWfVsKVriJa6jjHULmLIqCSSyaF5YrTH7u.
jnikula at jlaptop:~/$ doveadm pw -t
{SHA512-CRYPT}$6$to2umWLDtqvzS8SV$ZGpBeGNKuUN/2HKG6I2BEAt.Gzrz/y.SZDkos2GT2ik8obnp3XCFWfVsKVriJa6jjHULmLIqCSSyaF5YrTH7u.
-p 123456
doveadm(jnikula): Fatal: reverse password verification check failed:
Password mismatch

Using SHA512 sum scheme (-s SHA512) works ok in the same manner.

I have dovecot version 2.2.9 on Linux 3.11.0-14-generic x86_64 Ubuntu
13.10 and I get the same results on 32-bit Debian as well. Does anyone
have idea what's wrong?

Thanks in advance,
Jouko Nikula

Darren Pilgrim

2013-Dec-25 07:07 UTC

head link

[Dovecot] SHA512-CRYPT scheme fails password verification

On 12/24/2013 7:16 PM, Jouko Nikula wrote:> Hello,
>
> If I try to use the crypt schemes provided by libc. I fail as follows:
>
> jnikula at jlaptop:~/$ doveadm pw -s SHA512-CRYPT -p 123456
>
{SHA512-CRYPT}$6$to2umWLDtqvzS8SV$ZGpBeGNKuUN/2HKG6I2BEAt.Gzrz/y.SZDkos2GT2ik8obnp3XCFWfVsKVriJa6jjHULmLIqCSSyaF5YrTH7u.
> jnikula at jlaptop:~/$ doveadm pw -t
>
{SHA512-CRYPT}$6$to2umWLDtqvzS8SV$ZGpBeGNKuUN/2HKG6I2BEAt.Gzrz/y.SZDkos2GT2ik8obnp3XCFWfVsKVriJa6jjHULmLIqCSSyaF5YrTH7u.
> -p 123456
> doveadm(jnikula): Fatal: reverse password verification check failed:
> Password mismatch
>
> Using SHA512 sum scheme (-s SHA512) works ok in the same manner.
>
> I have dovecot version 2.2.9 on Linux 3.11.0-14-generic x86_64 Ubuntu
> 13.10 and I get the same results on 32-bit Debian as well. Does anyone
> have idea what's wrong?
You're being bitten by shell interpretation/expansion.  You need to make 
the hash an uninterpretted literal (in bourne-type shells, wrap it in 
single quotes):

# doveadm pw -s SHA512-CRYPT -p 123456
{SHA512-CRYPT}$6$ZmAHfx//YBcuQdpt$/vUoc3G7y/v9JMSfrz0zhdBTs2U5ZmyLZbB6BEpV3BBi8f9N70kNf6xZWAnhE.hQn46pQhpIwnziIdNfjlAKu1

# doveadm pw -t 
{SHA512-CRYPT}$6$ZmAHfx//YBcuQdpt$/vUoc3G7y/v9JMSfrz0zhdBTs2U5ZmyLZbB6BEpV3BBi8f9N70kNf6xZWAnhE.hQn46pQhpIwnziIdNfjlAKu1
-p 123456
doveadm(root): Fatal: reverse password verification check failed: 
Password mismatch

# doveadm pw -t 
'{SHA512-CRYPT}$6$ZmAHfx//YBcuQdpt$/vUoc3G7y/v9JMSfrz0zhdBTs2U5ZmyLZbB6BEpV3BBi8f9N70kNf6xZWAnhE.hQn46pQhpIwnziIdNfjlAKu1'
-p 123456
{SHA512-CRYPT}$6$ZmAHfx//YBcuQdpt$/vUoc3G7y/v9JMSfrz0zhdBTs2U5ZmyLZbB6BEpV3BBi8f9N70kNf6xZWAnhE.hQn46pQhpIwnziIdNfjlAKu1
(verified)

Maybe Matching Threads

xy plot in version 2.7.1 for Mac (PR#12520)

dovecot - Dec 2013 - SHA512-CRYPT scheme fails password verification

[Dovecot] SHA512-CRYPT scheme fails password verification

[Dovecot] SHA512-CRYPT scheme fails password verification

Maybe Matching Threads