Displaying 20 results from an estimated 150 matches similar to: "Double variable expansion / multiple password mechanisms"
2016 Jun 14
2
Double variable expansion / multiple password mechanisms
Hi Karsten,
> You should be able to add multiple userPassword attributes to your directory:
>
> userPassword: {CRAM-MD5}xxx
> userPassword: {DIGEST-MD5}xxxx
> userPassword: {SCRAM-SHA-1}xxxx
> userPassword: {NTLM}xxxx
>
>
> Karsten
Did try this, didn't end end well.
Jun 14 12:59:43 auth: Error:
ldap(leonkyneur at itest.com,192.168.99.3,<SQn6QD41TpvLhgGR>):
2019 Jan 19
2
SCRAM-SHA-256 and SCRAM-SHA-512 supports
Hello all,
I would like to know if it is possible to add SCRAM-SHA-256 and SCRAM-SHA-512 supports?
RFC7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS: Simple Authentication and Security Layer (SASL) Mechanisms
https://tools.ietf.org/html/rfc7677
Thanks in advance.
Regards,
Neustradamus
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
2019 Jan 20
1
SCRAM-SHA-256 and SCRAM-SHA-512 supports
Hello Stephan,
Thanks for the link about SCRAM-SHA-256, good news for this point, hope a merge soon :)
I am from this page: https://wiki.dovecot.org/Authentication/PasswordSchemes ^^
The -PLUS variant for all SCRAM is not possible too for have (with other SCRAM):
SCRAM-SHA-1(-PLUS), SCRAM-SHA-224(-PLUS), SCRAM-SHA-256(-PLUS), SCRAM-SHA-384(-PLUS), SCRAM-SHA-512(-PLUS)
Some softwares use
2019 Jan 07
2
Feature request SCRAM-SHA-256
Op 16/12/2018 om 10:06 schreef Tributh via dovecot:
>
> Am 16.12.18 um 09:42 schrieb Aki Tuomi:
>>> On 16 December 2018 at 10:27 Tributh via dovecot <dovecot at dovecot.org> wrote:
>>>
>>>
>>> Hi,
>>> is that here the right place to make feature requests?
>>>
>>> dovecot supports as authentication mechanism
>>>
2018 Dec 16
1
Feature request SCRAM-SHA-256
> On 16 December 2018 at 10:27 Tributh via dovecot <dovecot at dovecot.org> wrote:
>
>
> Hi,
> is that here the right place to make feature requests?
>
> dovecot supports as authentication mechanism
> SCRAM-SHA-1 from RFC 5802
> which was updated to
> SCRAM-SHA-256 in RFC 7677
>
> Can SCRAM-SHA-256 be added to the authentication mechanisms?
>
>
2019 Jun 19
2
Help on CRAM-MD5
On 19.6.2019 7.48, Alexander Dalloz via dovecot wrote:
> Am 19.06.2019 um 00:04 schrieb Jorge Bastos via dovecot:
>> Howdy,
>>
>> I'm using dovecot and mysql users, and i'm creating the password with:
>>
>> ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16)))
>>
>> So far so good, everything's fine.
>>
2012 Oct 02
2
[PATCH] Add SCRAM-SHA-1 password scheme
Hello,
attached is an hg export on top of the current dovecot-2.2 branch, which
adds support for a SCRAM-SHA-1 password scheme.
Ideally I'd want doveadm pw's rounds flag to apply to this, but that's
currently specific to the crypt password scheme, so I left it out for now.
Regards,
Florian Zeitz
-------------- next part --------------
# HG changeset patch
# User Florian Zeitz
2018 Dec 06
3
argonid and dovecote
on a FreeBSD 11.2 amd64 machine, I am trying to get Dovecot 2.3.4 to play
nice with "argonid" encryption.
In the "10-auth.conf" file, I tried:
auth_mechanisms = plain argon2id
Upon restarting dovecot, I received an error message when attempting to
actually it:
auth: FATAL: Unknown authentication mechanism "ARGON2ID"
Output from doveadm pw -l
doveadm pw -l
SHA1
2013 Feb 25
1
Dovecot SASL: SCRAM-SHA-1 Authentication Fails
Dear all,
I use Dovecot SASL (2.1.15) on Ubuntu 12.04 for IMAP authentication and
Postfix SASL authentication. I tried to setup SCRAM-SHA-1 as SASL
mechanism. This works well on Dovecot's client side towards my OpenLDAP
server (with libsasl-2), but fails on the server side (IMAP and SMTP).
In the following, there's an extract from Dovecot's log, when using mutt
as SMTP client:
2016 Jun 03
3
Blowfish hashed passwords
(I subscribed to a daily digest for this list and can?t figure out how to reply to a reply.)
Anyway, Aki Tuomi replied to my feature request saying:
> We support in latest 2.2 release
>
> MD5 MD5-CRYPT SHA SHA1 SHA256 SHA512 SMD5 SSHA SSHA256 SSHA512 PLAIN
> CLEAR CLEARTEXT PLAIN-TRUNC CRAM-MD5 SCRAM-SHA-1 HMAC-MD5 DIGEST-MD5
> PLAIN-MD4 PLAIN-MD5 LDAP-MD5 LANMAN NTLM OTP SKEY
2019 Feb 13
3
Using SHA256/512 for SQL based password
On 2/13/19 1:23 AM, Matthias Fechner via dovecot wrote:
>
>
> Am 13. Februar 2019 00:34:15 schrieb Robert Moskowitz
> <rgm at htt-consult.com>:
>
>> On 2/12/19 6:03 PM, Matthias Fechner via dovecot wrote:
>>> Am 12.02.2019 um 17:05 schrieb Robert Moskowitz via dovecot:
>>>> I have trying to find how to set the dovecot-sql.conf for using
2018 Dec 03
2
dovecot and argon2 encryption
I am using a FreeBSD 11-2 amd/64 system with dovecot version 2.3.4 installed.
I was playing around with different encryption schemes.
doveadm pw -l
SHA1 SSHA512 BLF-CRYPT PLAIN HMAC-MD5 OTP SHA512 SHA RPA DES-CRYPT CRYPT SSHA
MD5-CRYPT SKEY PLAIN-MD4 PLAIN-MD5 SCRAM-SHA-1 LANMAN SHA512-CRYPT CLEAR
CLEARTEXT SSHA256 NTLM MD5 PBKDF2 SHA256 CRAM-MD5 PLAIN-TRUNC SHA256-CRYPT
SMD5 DIGEST-MD5
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
On 21 Feb 2023, at 10:12 pm, James Brown <jlbrown at bordo.com.au> wrote:
>
> The new one has Dovecot compiled with same configure options, same configuration files, but fails to authenticate:
>
> Feb 21 21:51:03 master: Info: Dovecot v2.3.20 (80a5ac675d) starting up for imap, pop3 (core dumps disabled)
> Feb 21 21:51:33 auth-worker(11701): Error: conn unix:auth-worker
2011 Sep 16
2
[PATCH] SCRAM-SHA-1 authentication
Hy,
over the last days I have implemented SCRAM-SHA-1 in Dovecot's 2.1
branch. It does not do SCRAM-SHA-1-PLUS, but should be extendable enough
to introduce it later.
There are some checks for the message format which (assuming the client
acts correclty) are not strictly necessary during parsing. This is
partially in the hope that it might aid client implementers, partially
because it (IMHO)
2019 Jun 20
5
Help on CRAM-MD5
Hello,
The world is not black or white.
Yes CRAM-MD5 is old and his successor SCRAM-XXXXXX is not widely
available/implemented which is sad.
For your need, use TLS and forget about it.
Thunderbird is conservative. If you don't configure TLS or TLS is not
available, it try to use something that not expose the password.
There is plenty of context where TLS is not possible/desirable.
And
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
> On 22/02/2023 09:10 EET James Brown <jlbrown at bordo.com.au> wrote:
>
>
> On 22 Feb 2023, at 5:53 pm, Aki Tuomi <aki.tuomi at open-xchange.com> wrote:
>
> >
> >
> > > > >
> > > > > % locate libsodium
> > > > > /opt/homebrew/Cellar/libsodium
> > > > > /opt/homebrew/Cellar/libsodium/1.0.18_1
2023 Feb 22
1
Auth-worker, unknown scheme ARGON2ID
> On 22/02/2023 07:00 EET James Brown <jlbrown at bordo.com.au> wrote:
>
>
> On 21 Feb 2023, at 10:12 pm, James Brown <jlbrown at bordo.com.au> wrote:
>
> >
> >
> > The new one has Dovecot compiled with same configure options, same configuration files, but fails to authenticate:
> >
> > Feb 21 21:51:03 master: Info: Dovecot v2.3.20
2019 Feb 13
3
Using SHA256/512 for SQL based password
On 2/13/19 8:30 AM, Aki Tuomi wrote:
> On 13.2.2019 15.18, Robert Moskowitz via dovecot wrote:
>>
>> On 2/13/19 1:23 AM, Matthias Fechner via dovecot wrote:
>>>
>>> Am 13. Februar 2019 00:34:15 schrieb Robert Moskowitz
>>> <rgm at htt-consult.com>:
>>>
>>>> On 2/12/19 6:03 PM, Matthias Fechner via dovecot wrote:
2019 Jan 11
2
managesieve configuration
On 10.1.2019 18.28, Dominik Menke wrote:
> I've missed a part at the end:
>
>> This leads me to my question: How do I force Dovecot to print at
>> least a STARTTLS line after a client connects to port 4190? Looking
>
> ... at the default configuration files in /etc/dovecot/conf.d/ I don't
> see an obvious difference.
>
>
> --Dominik
Can you provide
2019 Feb 20
4
Using SHA256/512 for SQL based password
On 2/19/19 1:50 AM, Aki Tuomi via dovecot wrote:
>
>
> On 17.2.2019 10.46, Aki Tuomi via dovecot wrote:
>>
>>> On 17 February 2019 at 10:38 Odhiambo Washington via dovecot <
>>> dovecot at dovecot.org <mailto:dovecot at dovecot.org>> wrote:
>>>
>>>
>>> On Sun, 17 Feb 2019 at 11:34, Marc Weustink via dovecot <
>>>