Displaying 20 results from an estimated 1000 matches similar to: "POP3/IMAPv4 CRAM-MD5 Authentication failed.(Re-post)"
2010 Aug 07
1
dovecot.conf: mechanisms = plain login cram-md5 | Windows Live Mail: CRAM-MD5 authentication failed. This could (NOT) be due to a lack of memory on your system
/etc/dovecot.conf:
auth default {
mechanisms=plain login cram-md5
passdb {
#..............
Windows Live Mail:
CRAM-MD5 authentication failed. This could be due to a lack of memory on
your system.
Your IMAP command could not be sent to the server, due to non-network
errors. This could, for example, indicate a lack of memory on your system.
Configuration:
Account: Sheltoncomputers
2008 Jun 01
2
Requested CRAM-MD5 scheme, but we have only MD5-CRYPT
After upgrading my dovecot installation about a month ago, I have started
seeing "Requested CRAM-MD5 scheme, but we have only MD5-CRYPT" message
from dovecot in my logs.
Any help in finding and correcting the cause will be greatly appreciated.
--Richard
2009 Jun 22
1
CRAM-MD5 authentication but plain-md5 password storage.
Hi all,
Got a question on configuring dovecot, I'm still new at this so I
might be doing this all wrong.
I want dovecot to authenticate the mail client using CRAM-MD5 so I've
setup the config in dovecot.conf:
auth default {
mechanisms = cram-md5
passdb sql {
# Path for SQL configuration file, see doc/dovecot-sql-example.conf
args = /etc/dovecot/dovecot-sql.conf
2008 Apr 18
0
CRAM-MD5 HMAC-MD5 password algorithm for PHP
Hi,
based on the recent discussion by Bill Cole and Douglas Willcocks I've
quickly put together a PHP script which generates MD5 'contexts' for
Dovecot's password files:
http://www.noerenberg.de/hajo/pub/dovecot_hmacmd5.php.txt
The script has not been tested extensively, so use it on your own risk :)
Most of the code has been shamelessly stolen from various sources.
2010 Sep 21
1
MD5 to CRAM-MD5 password conversion?
We have a plethora of accounts for which we would like to enable
CRAM-MD5 but their passwords are stored as MD5 hashes. Is there anything
we can do? Can we take a linux MD5 hashed password (e.g.
$1$fac330ee$wd6Tll...) and convert it to dovecot's CRAM-MD5 format (e.g.
{CRAM-MD5}b3f297...)?
Thanks!
2014 Dec 06
0
MD5-CRYPT/CRAM-MD5 vs SHA512-CRYPT/PLAIN
On 12/5/14, ML mail <mlnospam at yahoo.com> wrote:
> Hello,
>
> I am wondering which variant is more secure for user authentication and
> password scheme. Basically I am looking at both variants:
>
> 1) MD5-CRYPT password scheme storage with CRAM-MD5 auth mechanism
> 2) SHA512-CRYPT password scheme storage with PLAIN auth mechanism
>
> In my opinion the option 2)
2014 Dec 06
0
MD5-CRYPT/CRAM-MD5 vs SHA512-CRYPT/PLAIN
Am 06.12.2014 um 06:56 schrieb Jan Wide?:
> If you add disable_plaintext_auth=yes ssl=required settings, then
> dovecot will drop authentication without STARTTLS. But damage will be
> done, client will send unencrypted (or in this scenario MD5 or SHA512
> hash) login/password
no, damage will *not* be done
STARTTLS happens in context of connect and *log before* any
authentication is
2014 Dec 06
1
MD5-CRYPT/CRAM-MD5 vs SHA512-CRYPT/PLAIN
Am 6. Dezember 2014 13:10:58 MEZ, schrieb Reindl Harald <h.reindl at thelounge.net>:
>
>Am 06.12.2014 um 06:56 schrieb Jan Wide?:
>> If you add disable_plaintext_auth=yes ssl=required settings, then
>> dovecot will drop authentication without STARTTLS. But damage will be
>> done, client will send unencrypted (or in this scenario MD5 or SHA512
>> hash)
2014 Dec 05
3
MD5-CRYPT/CRAM-MD5 vs SHA512-CRYPT/PLAIN
Hello,
I am wondering which variant is more secure for user authentication and password scheme. Basically I am looking at both variants:
1) MD5-CRYPT password scheme storage with CRAM-MD5 auth mechanism
2) SHA512-CRYPT password scheme storage with PLAIN auth mechanism
In my opinion the option 2) should be safer although it is using PLAIN auth mechanism. Of course I would always use STARTTLS and
2014 Dec 06
3
MD5-CRYPT/CRAM-MD5 vs SHA512-CRYPT/PLAIN
On 12/06/2014 02:35 AM, Nick Edwards wrote:
> On 12/5/14, ML mail <mlnospam at yahoo.com> wrote:
>> Hello,
>>
>> I am wondering which variant is more secure for user authentication and
>> password scheme. Basically I am looking at both variants:
>>
>> 1) MD5-CRYPT password scheme storage with CRAM-MD5 auth mechanism
>> 2) SHA512-CRYPT password
2008 Jul 08
2
Dovecot CRAM-MD5 & DIGEST-MD5
Hello all.
Im try to make a SMTP Auth using Docecot SASL.
Im use swaks for tests.
Im store users in LDAP.
As im understand for CRAM & DIGEST MD5 we need to store pass in a clear
text?... Ok.
mail: admin3 at domain.off
userPassword: 123 <- Clear text
What im do
%swaks -a CRAM-MD5 -au admin3 at domain.off -ap 123
To: admin3 at domain.off
=== Trying mx.domain.off:25...
=== Connected to
2003 Nov 10
2
PATCH: CRAM-MD5 for Dovecot
Hi Timo,
Mozilla 1.5 doesn't understand DIGEST-MD5; it only speaks CRAM-MD5 or
PLAIN. Maybe other clients have the same problem. My users like
Mozilla, so I wrote new code for Dovecot to speak CRAM-MD5, using
your mech-digest-md5.c as a reference.
Attached diff in two formats
i) for current CVS
ii) against last release
both tested and working with Mozilla and KMail's CRAM-MD5.
I
2004 Feb 07
1
CRAM-MD5 support?
Hi, I'm wondering what is dovecot's support for CRAM-MD5? The mailing list
for November 2003 seems to indicate that Timo has included it into the CVS
tree, however the ChangeLogs in the latest version does not say anything
about it. The online docs has indicated that it's supported, but the doc
files in 0.99.10.4 doesn't seem to mention about it....
Thanks in advance.
2006 Oct 16
0
Dovecot and CRAM-MD5 authentication (brief) HOWTO
Hi all,
I just finished configuring CRAM-MD5 for Dovecot and noted there were
not a lot of resources out there that described the process.
I've written up a rough and brief HOWTO at:
http://www.kartar.net/weblog/cram-md5-authentication-with-dovecot/
Comments welcome and hope it helps someone.
Regards
James Turnbull
--
James Turnbull <james at lovedthanlost.net>
---
Author of Pro
2007 Oct 01
1
saslauth for digest or cram-md5?
Is it possible to use saslauth for digest-md5 or cram-md5
authentication? If so how would one go about configuring dovecot?
Thanks,
--
Knute Johnson
Molon Labe...
2010 Sep 23
1
Plain-Text & CRAM-MD5
Hi there,
I'm currently running my auth against CRAM-MD5 only. But I face problems
with customers who apparently have smart phones which ONLY support
plain-text authentification ;( Bad - I know, but what should I do ... ;/
So my question now is: Is it possible to run CRAM-MD5 as well as
Plain-Text auth together with Postfix if Postfix is using Dovecot's SASL
auth service?
Cause
2010 Oct 13
2
Director and CRAM-MD5
Hello,
i have a setup with two director servers pointing to two backends. I
don't care that much for load balancing, my main goal is high availability.
CRAM-MD5 auth is working fine if I connect directly to the backends, but
the director only supports AUTH=PLAIN because of the static passdb.
director config:
> passdb {
> driver = static
> args = nopassword=y proxy=y
> }
>
2013 Aug 27
0
How do I get CRAM-MD5 to work?
I know how to ENABLE CRAM-MD5, but getting it to actually work?
<http://wiki2.dovecot.org/HowTo/CRAM-MD5>
It looks like I have to 1) manually create a CRAM-MD5 data file and, I suppose, 2) manually manage the file? Given I do not know user's passwords, this might be tricky.
Currently I have users authenticate against MySQL (virtual users) or pam (local users).
Or do i just ignore it
2014 Mar 26
0
IMAP proxy with master user and CRAM-MD5 auth mechanism
Hello,
I would like to know if it possible to have a dovecot IMAP proxy frontend where CRAM-MD5 can be used as auth mechanism (assuming I would be using a master user/password on the dovecot IMAP backend/mailbox)? I have read a few times the following http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy page but somehow it is still unclear to me if the IMAP proxy then needs to have all the
2014 Jun 06
0
CRAM-MD5 authentication memory leak problem.
I used dovecot Auth daemon for postfix SMTP Auth.
I saved clear password to OpenLDAP, then I set up that as the password
will be used.
There ware no trouble when authentication had sucessed. But when
authentication failed by using "CRAM-MD5", it caused increasing memory
allocation of dovecot auth daemon.
In case of using "PLAIN" or "LOGIN", there were no problem