search for: rpa

Hello, this patch adds initial response support for NTLM and RPA authentication mechanism. It can be useful if dovecot acts as authentication backend for SMTP server. RFC2554 permits initial response in AUTH command, so it's legal to send NTLM type 1 message or RPA token 1 in it. Please consider applying. Best regards. -- Andrey Panin | Linux and UNIX s...

Hello all, attached patch implements Compuserve RPA athentication mechanism. Tested with: - Eudora 6 (uses Compuserve "Virtual Key" RPA software); - TheBat! 2.11 (uses it's own RPA implementation). I hope it can be useful for someone. Best regards. -- Andrey Panin | Linux and UNIX system administrator pazke at donpac.ru | PGP...

Dear List, I have a problem related to R package creation. I extended the 'show' method to cover a new class with the following lines in the zzz.R file in the R directory while creating an R package. >setClass("rpa", contains="list") >show.rpa <- function (...) {cat("rpa object \n")} The corresponding lines were also added to NAMESPACE file: >importMethodsFrom(methods,show) >exportClasses(rpa) >S3method(show,rpa) The CMD check and CMD build do not produce warning mes...

Dear all, I have been trying to create an R package. This has been successfull until I tried to define classes. Currently, my procedure is the following: Start R, load the function and class definition >tmp <- function (x) {x} >setClass("rpa", contains = "list", where=topenv(parent.frame())) Use package skeleton to create directory structure: >package.skeleton(name = "test",list=c("tmp")) Edit man files, add test/NAMESPACE file with the following contents: >export(tmp) >exportClasses("...

...omponent: auth Fixed version: 2.3.11.3 Report confidence: Confirmed Solution status: Fix available Vendor notification: 2020-05-03 Researcher credit: Orange from DEVCORE team CVE reference: CVE-2020-12674 CVSS: 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) Vulnerability Details: Dovecot's RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on Risk: An adversary can use this vulnerability to crash dovecot auth process repeatedly, preventing login. Steps to reproduce: (echo 'AUTH RPA'; echo -ne '\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8...

...omponent: auth Fixed version: 2.3.11.3 Report confidence: Confirmed Solution status: Fix available Vendor notification: 2020-05-03 Researcher credit: Orange from DEVCORE team CVE reference: CVE-2020-12674 CVSS: 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) Vulnerability Details: Dovecot's RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on Risk: An adversary can use this vulnerability to crash dovecot auth process repeatedly, preventing login. Steps to reproduce: (echo 'AUTH RPA'; echo -ne '\x60\x11\x06\x09\x60\x86\x48\x01\x86\xf8...

...ere is my test from openssl. Mind you this fails as a "BAD" ssl cert in Evolution. :~$ openssl s_client -ssl2 -connect pop.x10.com:995 CONNECTED(00000003) depth=0 /C=US/ST=Washington/L=Renton/O=X10 Wireless Technology, Inc./OU=Information Technology/OU=Terms of use at www.verisign.com/rpa (c)05/CN=pop.x10.com verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 /C=US/ST=Washington/L=Renton/O=X10 Wireless Technology, Inc./OU=Information Technology/OU=Terms of use at www.verisign.com/rpa (c)05/CN=pop.x10.com verify error:num=27:certificate not trusted ver...

Dear R-Help, I am using the 'mfp' package. It produces three plots (as I am using the Cox model) simultaneously which can be viewed together using the following code: fit <- mfp(Surv(rem.Remtime,rem.Rcens)~fp(age)+strata(rpa),family=cox,data=nearma,select=0.05,verbose=TRUE) par(mfrow=c(2,2)) plot(fit) They can be viewed separately but the return key must be pressed after each graph appears (Click or hit ENTER for next page). I'd like to isolate the second plot produced (the estimated functional form of the influe...

...ich are unused, untested or deprecated. We will provide advance notification before removing anything. To start, the following features are likely to be removed in next few releases of Dovecot. - Authentication drivers: vpopmail, checkpassword, bsdauth, shadow, sia - Password schemes: HMAC-MD5, RPA, SKEY, PLAIN-MD4, LANMAN, NTLM, SMD5 - Authentication mechanisms: ntlm, rpa, skey - Dict drivers: memcached, memcached-ascii (use redis instead) - postfix postmap support - autocreate & autosubscribe plugins (use built-in auto=create/subscribe setting instead) - expire plugin (use built-in...

...ich are unused, untested or deprecated. We will provide advance notification before removing anything. To start, the following features are likely to be removed in next few releases of Dovecot. - Authentication drivers: vpopmail, checkpassword, bsdauth, shadow, sia - Password schemes: HMAC-MD5, RPA, SKEY, PLAIN-MD4, LANMAN, NTLM, SMD5 - Authentication mechanisms: ntlm, rpa, skey - Dict drivers: memcached, memcached-ascii (use redis instead) - postfix postmap support - autocreate & autosubscribe plugins (use built-in auto=create/subscribe setting instead) - expire plugin (use built-in...

...; file, I tried: auth_mechanisms = plain argon2id Upon restarting dovecot, I received an error message when attempting to actually it: auth: FATAL: Unknown authentication mechanism "ARGON2ID" Output from doveadm pw -l doveadm pw -l SHA1 SSHA512 BLF-CRYPT PLAIN HMAC-MD5 OTP SHA512 SHA RPA DES-CRYPT CRYPT SSHA MD5-CRYPT SKEY PLAIN-MD4 PLAIN-MD5 SCRAM-SHA-1 LANMAN SHA512-CRYPT CLEAR CLEARTEXT ARGON2I ARGON2ID SSHA256 NTLM MD5 PBKDF2 SHA256 CRAM-MD5 PLAIN-TRUNC SHA256-CRYPT SMD5 DIGEST-MD5 LDAP-MD5 I assume I am making a stupid mistake, but I do not know what it is. -- Jerry

HI! I'm trying to update openSUSE package on OBS [1] which builds for various OS versions and hardware platforms. To me it seems that a test fails on 32bit platforms: Info: invalid token 3: structure length disagrees with data size test rpa ..................................... : ok Info: invalid NTLM response: buffer length out of bounds test ntlm ............................: ok 1 / 86 tests failed [1] https://build.opensuse.org/package/show/home:stroeder:branches:server:mail/dovecot23 Ciao, Michael. -------------- next part ----...

...ailed: Permission denied > > Likewise config error, but not fatal. > > Post your config > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1 > Hi Steffen, the output from doveconf -n: auth_mechanisms = plain login digest-md5 cram-md5 ntlm rpa apop anonymous gssapi managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mi...

...1 22835173 (PABX/FAX) Telefone Mvel - Celular: 55 21 91978284 I0Y0g0 *H 0_10 UUS10U VeriSign, Inc.1705U.Class 1 Public Primary Certification Authority0 991117000000Z 040106235959Z01-0+U $Certisign Certificadora Digital LTDA10UVeriSign Trust Network1?0=U6Terms of use at https://www.certisign.com.br/RPA (c)991<0:U3Certisign Class 1 Consumer Individual Subscriber CA00 *H 0rsBm`CD7RH AgMu5]fVHfx[9lrd7:aq_qD#zrzzFs@B%`r, 00$U0010UAffiliate1-80 `HB0GU @0>0< `HE0.0,+ https://www.certisign.com.br/RPA0U00U0 *H py; hhMSD<J Yj''&"Z bfxray DMb`}eSJW?4hJD,Yd8:00Q )AX2E0 *H 0...

> Password schemes: HMAC-MD5, RPA, SKEY, PLAIN-MD4, LANMAN, NTLM, SMD5 The web is flooded with plain text passwords and hashed passwords harvested from hacked servers. Dovecot stores passwords with the same scheme used for client authentication. Therefore, we use crammd5/hmac-md5. It does not look like much, but is better than p...

I am using a FreeBSD 11-2 amd/64 system with dovecot version 2.3.4 installed. I was playing around with different encryption schemes. doveadm pw -l SHA1 SSHA512 BLF-CRYPT PLAIN HMAC-MD5 OTP SHA512 SHA RPA DES-CRYPT CRYPT SSHA MD5-CRYPT SKEY PLAIN-MD4 PLAIN-MD5 SCRAM-SHA-1 LANMAN SHA512-CRYPT CLEAR CLEARTEXT SSHA256 NTLM MD5 PBKDF2 SHA256 CRAM-MD5 PLAIN-TRUNC SHA256-CRYPT SMD5 DIGEST-MD5 LDAP-MD5 There is no mention of "argon2" shown. Now, from the command line I can enter this command:...

...owing features are likely to be removed in next few releases of Dovecot. </div> <div> <br> </div> <div> - Authentication drivers: vpopmail, checkpassword, bsdauth, shadow, sia </div> <div> - Password schemes: HMAC-MD5, RPA, SKEY, PLAIN-MD4, LANMAN, NTLM, SMD5 </div> <div> - Authentication mechanisms: ntlm, rpa, skey </div> <div> - Dict drivers: memcached, memcached-ascii (use redis instead) </div> <div> - postfix postmap support </div&g...

...=<azher>, method=DIGEST-MD5, rip=127.0.0.1, lip=127.0.0.1, secured and user can't login. Plz suggest. Regards -Azher Settings: ====== disable_plaintext_auth = yes auth default { # Space separated list of wanted authentication mechanisms: # plain login digest-md5 cram-md5 ntlm rpa apop anonymous gssapi mechanisms = plain login cram-md5 digest-md5 Mysql Tables: Passwords are stored with the help of MD5 function dovecot-sql.conf : ============ user_query = SELECT home, uid, gid FROM users WHERE userid = '%u' password_query = SELECT userid as user, password, home as...

...ted! Can't understand it and it's driving me crazy. I've deleted and created the user a thousand times, and opened the config up as wide as possible. I'm obviously doing something stupid but what! # OS: Linux 3.2.0-4-686-pae i686 Debian 7.2 auth_mechanisms = plain login digest-md5 rpa base_dir = /var/run/dovecot/ disable_plaintext_auth = no login_trusted_networks = 10.0.0.0/8 passdb { driver = pam } protocols = imap service auth { user = root } ssl_cert = </etc/ssl/certs/server.pem ssl_key = </etc/ssl/private/mail.key userdb { driver = passwd } -- View this messa...

..., Aki Tuomi replied to my feature request saying: > We support in latest 2.2 release > > MD5 MD5-CRYPT SHA SHA1 SHA256 SHA512 SMD5 SSHA SSHA256 SSHA512 PLAIN > CLEAR CLEARTEXT PLAIN-TRUNC CRAM-MD5 SCRAM-SHA-1 HMAC-MD5 DIGEST-MD5 > PLAIN-MD4 PLAIN-MD5 LDAP-MD5 LANMAN NTLM OTP SKEY RPA CRYPT SHA256-CRYPT > SHA512-CRYPT > > There is also blowfish support as BLF-CRYPT, but that requires that your > system supports it. CRYPT supports whatever your crypt() supports. > The reason I suggest building in fallback hash type support is that my install of Dovecot on Ubun...