search for: passwordhash

...y password hash schemes when looking up a password in a database? I originally set up with #default_pass_scheme = MD5, and I would like to migrate to SHA512. Seeing as the scheme is actually stored in the password column along with the password in the format $_<scheme#>_$_<salt>_$_<passwordhash>_, it seems to me that dovecot should be able to look at the scheme number and simply do the right thing. If this is possible, then migrating passwords over would be much easier, since people will still be able to log in with their old MD5-hashed password and the changer can be set up to hash wi...

...efixed with "{password-scheme}", for example "{plain}plaintext-password". Why doesn't dovecot recognize the crypt scheme identifier ($1$ for MD5-CRYPT, $6$ for SHA512-CRYPT etc.)? At the moment I have to have the following in my db for dovecot to work: {SHA512-CRYPT}$6$salt$passwordhash [1]http://wiki2.dovecot.org/AuthDatabase/SQL

Hi all, I am running samba-server-3.0.6-4.1.100mdk, openldap-servers-2.1.25-6mdk, lib64sasl2-plug-digestmd5-2.1.15-10.1.100mdk. I have searched through the lists and I am wondering if I am the only one doing this kind of set-up.. Anyway question is as follows: In my ldap server I have normal posix accounts with plain text password that are sorted out by a sasl-regex in the slapd.conf and

...emes when looking up a password in a database? I originally set up > with #default_pass_scheme = MD5, and I would like to migrate to SHA512. > > Seeing as the scheme is actually stored in the password column along > with the password in the format $_<scheme#>_$_<salt>_$_<passwordhash>_, > it seems to me that dovecot should be able to look at the scheme number > and simply do the right thing. If this is possible, then migrating > passwords over would be much easier, since people will still be able to > log in with their old MD5-hashed password and the changer can...

Hi, I would be *VERY* interested in a reversed pwget (see http://www.martnet.com/~johnny/exploits/microsoft/NT/WinNT.passwordhashes.deobfuscation.html) to be able to automaticaly set first-time NT passwords ('smbpasswd -r' will only work if you first enter the 'previous' password) on our PDC (evt. remote from UNIX through some tcp (ssh?) connection). Bjart Kvarme seems to have written such a tool, called ...

Hello, this is the first time I write to the samba list and I hope my question is not off topic. I want to set up a samba server to replace an Active Directory for my Windows workstations. So far, I have a LINUX network that works perfectly, all my users are stored in a LDAP server and their authentication is done against a MIT Kerberos server. Hence all users have a valid kerberos ticket

I''m about to implement this, and I''m thinking of storing the user''s id and their hashed password in the cookie after a successful authentication. can any see an obvious security issue with this? I know the method is vulnerable to cookie theft but am i missing anything? thanks alan

....com/r/node/comments/4u1jcn/is_bcrypt_the_best_possible_password_hashing/ [3] https://nugetmusthaves.com/Tag/bcrypt [4] https://doc.dovecot.org/configuration_manual/authentication/password_schemes/#other-schemes [5] https://github.com/dotnet/AspNetCore/blob/master/src/Identity/Extensions.Core/src/PasswordHasher.cs [6] https://github.com/dovecot/core/blob/81b5b188c478ec36bea8bda8fcad1e5f32ac612b/src/auth/password-scheme-pbkdf2.c#L50 [7] https://github.com/dovecot/core/blob/ff5305136ae747867b6f6af9a1737188ae7b3b5a/src/auth/test-libpassword.c#L113

...to change all the suffix parameters to match the suffix you chose when you configured slapd. I use: UserSuffix: ou=people,dc=precidia GroupSuffix: ou=groups,dc=precidia HostSuffix: ou=hosts,dc=precidia DomainSuffix: ou=domains,dc=precidia PasswordHash: SSHA Set the "ranges" fields to match what you want for your site. Set the list of valid users to whatever is appropriate. I set it to: uid=admin,ou=People,dc=precidia Finally, create a new configuration password (it's group with the "list of valid users"...