similar to: HMAC-MD5 / HMAC-MD5-context

I'm trying to create an R script that will execute the HMAC algorithm for key-hashing messages. My hope is to use this script for some web authentication via R. The algorithm is found at http://www.ietf.org/rfc/rfc2104.txt Here is some example code that I have done that does not work for HMAC-MD5. I'm a big confused by the algorithm since I don't have a very good working knowledge

I'm currently experiencing a problem which has already been described by Jonathan in http://www.dovecot.org/list/dovecot/2006-August/015501.html If I use CRAM-MD5 auth with passwd-file as a backend (Thunderbird client) everything works fine (MD5-hashes have been shortened for readability): dovecot: auth(default): password(bob at foo.bar,10.0.0.123): Credentials: f12c884ba3cc82.. dovecot:

Hello, I want to use PostgreSQL to store my Dovecot users. I setup a very basic configuration, following word for word this page http://wiki.dovecot.org/DovecotPostgresql and it works ... almost. In fact, it works if I use PLAIN password scheme in my database. However, I would like to store them encrypted. But, if I replace the password field for my user with {HMAC-MD5}-... (the password

I was looking at the the way that ssh calculates an hmac, and I noticed that the ordering is a little strange - it does hash(key+message). Shouldn't this rather be hash(message+key)? In the former situation, it could be possible for an attacker to append something to the end of the data being sent. The attacker would be able to calculate a valid hmac without knowing the key. For instance,

Hi, I'm working on an LLVM Pass plugin and I'm running into a problem when loading it into opt. I want to have a custom option for my pass and added an llvm::cl::opt #include'ing "llvm/Support/CommandLine.h" linking the dependant libs causes the following error when loading it with opt: opt: CommandLine Error: Option 'debug-pass' registered more than once! I

Hi Philip, thanks for the quick answer. That makes sense, but when leaving the set LLVM_LINK_COMPONENTS out I get an undefined symbol when loading the plugin: _ZTVN4llvm2cl3optINSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEELb0ENS0_6parserIS7_EEEE which boils down to llvm::cl::opt<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>,

Hello all. Im try to make a SMTP Auth using Docecot SASL. Im use swaks for tests. Im store users in LDAP. As im understand for CRAM & DIGEST MD5 we need to store pass in a clear text?... Ok. mail: admin3 at domain.off userPassword: 123 <- Clear text What im do %swaks -a CRAM-MD5 -au admin3 at domain.off -ap 123 To: admin3 at domain.off === Trying mx.domain.off:25... === Connected to

Hello all, Still, is it impossible to use the external llvm custom pass on windows? I can build the 'mypass.dll' on windows using LLVM libraries. And, I use these 2 way to use my pass. clang.exe -Xclang -load -Xclang mypass.dll -c test.c opt.exe -load -Xclang mypass.dll -mypass test.bc -o optimized_test.bc But, Clang and opt didn't working well with my pass. This mean, my pass

Hello, I would like to see if this issue is a result of a misunderstanding on my part before I file a bug. I am using LLVM 3.4, built from the source tarballs. My system's uname is "Darwin tyler-air 12.5.0 Darwin Kernel Version 12.5.0: Sun Sep 29 13:33:47 PDT 2013; root:xnu-2050.48.12~1/RELEASE_X86_64 x86_64". All I'm trying to do is add a runtime check after all call

Hi. I'm using SMTP auth with Exim authenticating against Dovecot's auth socket. My (excellent) SMTP test tool "swaks" (http://jetmore.org/john/code/#swaks) tries multiple auth mechanismus consecutively which leads to the following message in Dovecot's log file: Error: auth(default): BUG: Authentication client gave a PID 6738 of existing connection I'm not sure where to

On Sun, Apr 3, 2016 at 4:19 PM, Stephan Bosch <stephan at rename-it.nl> wrote: >> Unfortunately I do not know (yet) which client action produces these >> log lines. "GET null null" seems not to be a sensible request in any >> case. >> >> Anyone seeing the same effect? > > > Did this happen only after upgrade to 2.2.23 or is this a fresh

Hi, I would like to add a feature to my email-client (Thunderbird) which stops emails from showing up until a specific time (e.g. having buttons for: show again this evening, tomorrow, next week, next month ...). As far as I've learned this is not possible with IMAP: - storing the 'do-not-show-until-time' within a custom header-field requires down- and uploading of the whole email and

Hi. I'm testing out the new 'master users' feature, and I'm not having any luck getting it to work. Anyone out there using it yet? Here's what I have so far: dovecot.conf: ------------ auth_master_user_separator = * auth default { passdb passwd-file { # Master users that can login as anyone else args = /etc/dovecot/dovecot.masterusers master = yes

I am having an issue where I am trying to test a weservice that I wrote by connecting to it from ruby. When I submit my form that calls the webservice it times out. you can see from the lighttpd log that the webservice completes just after the timeout. any ideas? am I doing something wrong? ---- source ---- def validate auth = ActionWebService::Client::Soap.new(AuthApi, "

Hi. I wonder if it is possible to log the number of bytes send in response to IMAP commands. Unfortunately there seems to be no config option similar to "pop3_logout_format". Courier writes a log file like this (header/body bytes): imaplogin: DISCONNECTED, ip=[::ffff:10.123.0.234], headers=0, body=0 Chris

Hi, I'm using dovecot 2.0.beta5 (IMAP and LMTP+sieve) and I'm getting lots of errors like this: Warning: /data/mail/4567/Maildir/dovecot-uidlist: Duplicate file entry at line 3: 1274182284.M635158P16414.mail,S=767,W=785:2,S (uid 5 -> 16) All data is stored on local disk (ext3, no NFS!). As this is a fresh installation of dovecot I do not know if older versions work better. One user

As mentioned in other posts [1], iOS7 Mail App uses a multi-folder full body search by default. As to my knowledge, this behavior cannot be disabled within the Mail App. Is there any way to disable/patch this behavior on the server side? My users complain that searching now takes 'forever'. They were happy with the old behavior (searching From/To/Subject only). I do NOT want to

Hi. If $otheruser shares a mailbox to $myuser, my private index is stored in *my* Maildir, according to this template (from the dovecot docs): mail_location = maildir:%%h/Maildir:INDEXPVT=%h/Maildir/shared/%%u If $otheruser renames the shared mailbox, all my private mail flags (Seen) are lost because my mailclient couldn't find the private index anymore. Is there any way to store the

... of a correctly formatted QUOTA spec in/for a static userdb. That's all I'm askin' for! i've tried a bunch of variants. the most recent two: user at domain.com:{PLAIN}testpass:::::: quota=maildir:storage=4096 user at domain.com:{PLAIN}testpass:::::: maildir:storage=4096 *none* (so far ...) work to override the spec in dovecot.conf. no errors in the logs; rather, simply:

Hi, based on the recent discussion by Bill Cole and Douglas Willcocks I've quickly put together a PHP script which generates MD5 'contexts' for Dovecot's password files: http://www.noerenberg.de/hajo/pub/dovecot_hmacmd5.php.txt The script has not been tested extensively, so use it on your own risk :) Most of the code has been shamelessly stolen from various sources.