Displaying 20 results from an estimated 30000 matches similar to: "Regarding SSHA512 Password Scheme"
2017 Apr 30
2
most secure password scheme
Hello,
Thanks for the explanation. So should I go with SSHA512 or
SHA512-CRYPT? From your explanation i'm interpreting to mean that
SHA512-CRYPT also salts. This is for storing in a mysql database.
Also, what should the password field length and type be set for?
Currently it's varchar(128)
Thanks.
Dave.
On 4/29/17, Aki Tuomi <aki.tuomi at dovecot.fi> wrote:
>
>> On April
2017 Apr 30
0
most secure password scheme
I would go with SHA512-CRYPT, since it is compatible with lots of other things. The field length is static and it contains ascii characters, and it appears to be 118 characters long, but it might be a good idea to use varchar(255) nevertheless, in case you decide to use something else someday.
With mysql, you can do
mysql> SELECT
2017 Apr 29
2
most secure password scheme
Hello,
I have a few questions on password schemes. Is SHA512 the most secure?
Is there a difference between SHA512 and SHA512-CRYPT? What about
SSHA512 and SSH512-CRYPT?
Is there a problem with this sql statement:
UPDATE virtual_users SET password=CONCAT(?{SHA256-CRYPT}?, ENCRYPT
(?Password Goes Here?, CONCAT(?$5$?, SUBSTRING(SHA(RAND()), -16))))
WHERE user=?user at example.com?;
I'm
2017 Apr 29
0
most secure password scheme
> On April 29, 2017 at 4:22 AM David Mehler <dave.mehler at gmail.com> wrote:
>
>
> Hello,
>
> I have a few questions on password schemes. Is SHA512 the most secure?
> Is there a difference between SHA512 and SHA512-CRYPT? What about
> SSHA512 and SSH512-CRYPT?
>
> Is there a problem with this sql statement:
>
> UPDATE virtual_users SET
2013 Apr 16
1
SSHA512 auth not working
I'm trying to configure SSHA512 passwords and when testing discovered
that they were not working as expected.
At first i was using Centos 6.4 which doesn't have the glibc CRYPT
newest functions ($6$salt$pass) so had to rollback to the Dovecot format
({SSHA512.HEX}saltedpassword+salt ) but I'm unable to let dovecot
authenticate properly.
Some logs and details:
Apr 16 02:55:37
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
> On 22/02/2023 07:48 EET James Brown <jlbrown at bordo.com.au> wrote:
>
>
> > On 22 Feb 2023, at 4:14 pm, Aki Tuomi <aki.tuomi at open-xchange.com> wrote:
> >
> >
> > > I?ve spent ages on this and am getting really desperate! :-(
> > >
> > > CPPFLAGS=-I/opt/homebrew/Cellar/openssl at 3/3.0.8/include
2015 Jan 10
0
Moving or "upgrading" from MD5 to SSHA512
On 1/9/2015 4:07 PM, Jyri Hovila [Turvamies.fi] wrote:
> Hello, world!
>
> I have a long-running Dovecot & Postfix installation using PostgreSQL
> back-end.
>
> Until now I've been using MD5 hashing but would like to "upgrade" to
> the salted SSHA512.
>
> Is there a way to configure Dovecot so that it would automatically
> detect the type of the hash
2015 Jan 10
5
Moving or "upgrading" from MD5 to SSHA512
Hello, world!
I have a long-running Dovecot & Postfix installation using PostgreSQL back-end.
Until now I've been using MD5 hashing but would like to "upgrade" to the salted SSHA512.
Is there a way to configure Dovecot so that it would automatically detect the type of the hash stored in the database, so that users who have changed their password (and thus being hashed with
2012 Apr 10
1
Authentication mechanism and Password scheme
Good day!
I'm just trying to figure out that my understanding of subject is correct.
So, if I want to store passwords in my database encrypted with SSHA512 scheme,
my only choice for Authentication mechanism is plaintext?
Thanks in advance!
--
? ?????????,
???????? ?????????
????????? ?????????????
??? "??????-?????"
???.: (423) 262-02-62 (???. 2037)
????: (423) 262-02-10
2014 Mar 19
1
Password hashing issue
Hello,
First off, thanks in advance for all of your help.
Now to my issue:
I am setting up my first email server. It will be for just me and a few
other people. I am using an Amazon EC2 server running Ubuntu 12.04. My MTA
is postfix.
As I said, this is my first time setting up an email server, so I am
following a guide that Arstechnia has published
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
On 21 Feb 2023, at 10:12 pm, James Brown <jlbrown at bordo.com.au> wrote:
>
> The new one has Dovecot compiled with same configure options, same configuration files, but fails to authenticate:
>
> Feb 21 21:51:03 master: Info: Dovecot v2.3.20 (80a5ac675d) starting up for imap, pop3 (core dumps disabled)
> Feb 21 21:51:33 auth-worker(11701): Error: conn unix:auth-worker
2015 Apr 23
3
doveadm problem
Hi,
since several versions i have the following problem:
Actually i am using:
dovecot --version
2.2.16 (de2023e630cb)
When i try to use doveadm i see the following error:
doveadm pw -t
{SSHA512}cywDi7p60qc1K0mK4zAC2NrnK86hntGgbQcAh3H9U3WEpZMFk1hj/MYQ81hJouP1FOsF/Jasc1BjzdaPeUU5fYLitEzV
-p 1234
Fatal: Couldn't load required plugin
/usr/lib/dovecot/modules/lib11_imap_quota_plugin.so:
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
> On 22/02/2023 07:00 EET James Brown <jlbrown at bordo.com.au> wrote:
>
>
> On 21 Feb 2023, at 10:12 pm, James Brown <jlbrown at bordo.com.au> wrote:
>
> >
> >
> > The new one has Dovecot compiled with same configure options, same configuration files, but fails to authenticate:
> >
> > Feb 21 21:51:03 master: Info: Dovecot v2.3.20
2011 May 14
2
dovecot authentication failing
Hello,
I'm running dovecot 2.0.x on a centos 5.6 machine. This is a new
installation, I haven't even opened the firewall to it yet. I was
trying to telnet localhost 143 and 110 trying to authenticate a user.
I'm getting authentication failure in my maillog but no details.
Here's the one line I get in my maillog:
May 14 15:33:42 ohio dovecot: pop3-login: Aborted login (auth failed,
2015 Jan 13
0
Moving or "upgrading" from MD5 to SSHA512
Hi!
My "no" referred to the fact that I had not read the article before. =D
Thanks for linking it - I'm sure it will be very useful.
I've been terribly busy during the last couple of days and have therefore not been able to comment much on the list. I'll come back there as soon as things calm down a bit. =)
Yours,
Jyri
--
+358-50-5632104 (24/7)
+358-46-8822157 (backup)
2018 Dec 03
2
dovecot and argon2 encryption
I am using a FreeBSD 11-2 amd/64 system with dovecot version 2.3.4 installed.
I was playing around with different encryption schemes.
doveadm pw -l
SHA1 SSHA512 BLF-CRYPT PLAIN HMAC-MD5 OTP SHA512 SHA RPA DES-CRYPT CRYPT SSHA
MD5-CRYPT SKEY PLAIN-MD4 PLAIN-MD5 SCRAM-SHA-1 LANMAN SHA512-CRYPT CLEAR
CLEARTEXT SSHA256 NTLM MD5 PBKDF2 SHA256 CRAM-MD5 PLAIN-TRUNC SHA256-CRYPT
SMD5 DIGEST-MD5
2012 Aug 28
2
Help with Virtual Plugin
Dear Experts,
I have configured virtual plugin for my setup
which is working as expected but after this dovecot lda is unable to
deliver message to any mailbox and showing following error:-
Error: user XXXXX: Initialization failed: Namespace 'virtual.':
Unknown mail storage driver virtual
Aug 28 12:46:27 lda(XXXXX): Fatal: Invalid user settings. Refer to
server log
2017 Sep 08
2
Automatic DB password hash scheme selection
Hi all,
Is there a way to get dovecot to recognize arbitrary password hash
schemes when looking up a password in a database? I originally set up
with #default_pass_scheme = MD5, and I would like to migrate to SHA512.
Seeing as the scheme is actually stored in the password column along
with the password in the format $_<scheme#>_$_<salt>_$_<passwordhash>_,
it seems to me that
2018 Dec 04
1
dovecot and argon2 encryption
On 12/4/18, 1:14 AM, "dovecot on behalf of Aki Tuomi" <dovecot-bounces at dovecot.org on behalf of aki.tuomi at open-xchange.com> wrote:
On 3.12.2018 22.24, Jerry wrote:
> I am using a FreeBSD 11-2 amd/64 system with dovecot version 2.3.4 installed.
> I was playing around with different encryption schemes.
>
> doveadm pw -l
> SHA1
2019 Dec 03
2
Dovecot 2.3.8 - How to force index creation for user/mailbox?
Neither of dovecot.index files are created (.cache, .log, .thread) - these
files are created when I open the folder with IMAP client. When mailbox is
not used for long time, the indexing takes very long time. So I'm looking
for any solution (preferably with doveadm) to manually reindex folders in
background.
wt., 3 gru 2019 o 20:23 Aki Tuomi <aki.tuomi at open-xchange.com> napisa?(a):