thr3ads.net - dovecot - SCRAM-SHA-1-PLUS / SCRAM-SHA-224(-PLUS) / SCRAM-SHA-256(-PLUS), SCRAM-SHA-384(-PLUS) and SCRAM-SHA-512(-PLUS) supports [Nov 2019]

If this information is useful, please help other people find it:
Share via:

- Neustradamus -

2019-Nov-15 21:58 UTC

SCRAM-SHA-1-PLUS / SCRAM-SHA-224(-PLUS) / SCRAM-SHA-256(-PLUS), SCRAM-SHA-384(-PLUS) and SCRAM-SHA-512(-PLUS) supports

Dear all,

I send you a new email to know what is the progress of SCRAM-SHA-***(-PLUS)
supports?

Currently there is only SCRAM-SHA-1:
https://doc.dovecot.org/configuration_manual/authentication/password_schemes/.

- RFC6331: Moving DIGEST-MD5 to Historic: https://tools.ietf.org/html/rfc6331
- RFC5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and
GSS-API Mechanisms: https://tools.ietf.org/html/rfc5802
- RFC7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and
Security Layer (SASL) Mechanisms: https://tools.ietf.org/html/rfc7677 - since
2015-11-02

I have seen several months ago, commits about SCRAM-SHA-256.

For your information, Cyrus SASL supports:
- SCRAM-SHA-1(-PLUS)
- SCRAM-SHA-224(-PLUS)
- SCRAM-SHA-256(-PLUS)
- SCRAM-SHA-384(-PLUS)
- SCRAM-SHA-512(-PLUS)
-> https://cyrusimap.org/sasl/sasl/authentication_mechanisms.html

You can see more and more informations here:
https://github.com/scram-xmpp/info/issues/1

Thanks in advance.

Regards,

Neustradamus

Possibly Parallel Threads

Search for more reasonably related threads

dovecot - Nov 2019 - SCRAM-SHA-1-PLUS / SCRAM-SHA-224(-PLUS) / SCRAM-SHA-256(-PLUS), SCRAM-SHA-384(-PLUS) and SCRAM-SHA-512(-PLUS) supports

SCRAM-SHA-1-PLUS / SCRAM-SHA-224(-PLUS) / SCRAM-SHA-256(-PLUS), SCRAM-SHA-384(-PLUS) and SCRAM-SHA-512(-PLUS) supports

Possibly Parallel Threads

Wisdom of the Ancients