Displaying 20 results from an estimated 8000 matches similar to: "CRAM-MD5 Password Generation Algorithm"
2006 Sep 11
3
Using pgsql with 'cram-md5 auth' and 'hmac-md5 scheme'
Hello,
I want to use PostgreSQL to store my Dovecot users. I setup a very
basic configuration, following word for word this page
http://wiki.dovecot.org/DovecotPostgresql and it works ... almost.
In fact, it works if I use PLAIN password scheme in my database.
However, I would like to store them encrypted.
But, if I replace the password field for my user with {HMAC-MD5}-...
(the password
2008 Sep 12
5
cram-md5 and users maintaining their own passwords?
Is there any other mechanism than using passwd files with md5-hashed
passwords created by dovecotpw that will support cram-md5
authentication?
Has anyone created setups where the passwd databases reside in the
individual users home directories?
Is it possible to persuade dovecotpw to update the passwd databases
automatically. Having to use a text editor to paste in the passwords
sets a high
2009 Jun 22
1
CRAM-MD5 authentication but plain-md5 password storage.
Hi all,
Got a question on configuring dovecot, I'm still new at this so I
might be doing this all wrong.
I want dovecot to authenticate the mail client using CRAM-MD5 so I've
setup the config in dovecot.conf:
auth default {
mechanisms = cram-md5
passdb sql {
# Path for SQL configuration file, see doc/dovecot-sql-example.conf
args = /etc/dovecot/dovecot-sql.conf
2008 Apr 18
0
CRAM-MD5 HMAC-MD5 password algorithm for PHP
Hi,
based on the recent discussion by Bill Cole and Douglas Willcocks I've
quickly put together a PHP script which generates MD5 'contexts' for
Dovecot's password files:
http://www.noerenberg.de/hajo/pub/dovecot_hmacmd5.php.txt
The script has not been tested extensively, so use it on your own risk :)
Most of the code has been shamelessly stolen from various sources.
2010 Feb 14
3
salted passwords
The idea of salted hash algorithms is to generate a different hash
even if the same text is entered. That can be easily seen with dovecotpw:
using NON-salted SHA256, same hash is generated for a given password
[root at correio ~]# dovecotpw -s SHA256 -p 123
{SHA256}pmWkWSBCL51Bfkhn79xPuKBKHz//H6B+mY6G9/eieuM=
[root at correio ~]# dovecotpw -s SHA256 -p 123
2009 Dec 16
2
CRAM-MD5 in Python
Hi to all!
I?m writing a python module (python+sqlalchemy) to manage user and domain configuration on my system (I hope to get a CLI tool, a Web app and even a native Mac app, via PyObjc, from my lib).
I?m implementing password crypto, but I have some problem in generating CRAM-MD5 password, dovecot style.
I?ve found an old discussion on this mailing list and a piece of Perl that works, but I need
2007 Mar 19
3
PHP implementation of dovecotpw passwords
I am looking for PHP functions that implement passwords that much the
dovecotpw implementation.
I downloaded one from PEAR, Crypt_HMAC, but the passwords it
generates look nothing like the dovecotpw passwords, which could be my
fault because I know nothing about the field.
Is there a guide or some library that implements them to match dovecotpw?
2007 Jan 24
1
default_pass_scheme = PLAIN-MD5 dont work :(
I config postfix+mysql+dovecot for SASL SMTP autentication.
It works if set:
default_pass_scheme = PLAIN
and store plain-text password in mysql
I'm change default_pass_scheme = PLAIN with
default_pass_scheme = PLAIN-MD5
an store password in mysql with md5('passwd')
and dovecotpw -s PLAIN-MD5 -p test
{PLAIN-MD5}
and md5("test") = 098f6bcd4621d373cade4e832627b4f6
but
2008 Nov 19
2
CRAM-MD5 and proxy_maybe
When using proxy_maybe CRAM-MD5 authentication fails when the connection
is proxied. Is this expected behavior? Is proxy_maybe too simplified for
this case?
We're using SQL so I could rewrite the query with IFs to fake
proxy_maybe and return the password as NULL and nologin as Y, but if it
works that way couldn't it work with proxy_maybe?
This works:
password_query = \
SELECT NULL AS
2019 Jun 18
4
Help on CRAM-MD5
Howdy,
I'm using dovecot and mysql users, and i'm creating the password with:
ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16)))
So far so good, everything's fine.
Today saw that i didn't enabled CRAM-MD5, but if I do, and the (at least)
IMAP client (roundcube/thunderbird/etc) issues CRAM-MD5 it doesn't
authenticate.
What am i doing wrong, or
2019 Jun 19
2
Help on CRAM-MD5
On 19.6.2019 7.48, Alexander Dalloz via dovecot wrote:
> Am 19.06.2019 um 00:04 schrieb Jorge Bastos via dovecot:
>> Howdy,
>>
>> I'm using dovecot and mysql users, and i'm creating the password with:
>>
>> ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16)))
>>
>> So far so good, everything's fine.
>>
2004 Jul 22
3
CRAM-MD5
Hi,
after getting dovecot working with PostgreSQL and plaintext passwords
I tried to use md5 encrypted passwords with mozilla.
www.roughtrade.net/dovecot says that Mozilla only supports CRAM-MD5
and that CRAM-MD5 is included in HEAD.
Now I have two questions:
1) Is the md5 hash stored in passdb with cram-md5 the same as in
digest-md5?
2) Is a new dovecot stable build planned within the next two
2018 Apr 23
2
question about using cram-md5 login passwords
hello dovecot community,
question; if my user database and dovecot installation is currently setup to use plain login passwords, and i want to convert to cram-md5, after i configure dovecot accordingly and reset passwords into cram-md5, if anyone uses plain login method again in the future, will it still work? or must they always from this point on use encrypted passwords? Thanks.
--
Thanks,
2003 Nov 10
2
PATCH: CRAM-MD5 for Dovecot
Hi Timo,
Mozilla 1.5 doesn't understand DIGEST-MD5; it only speaks CRAM-MD5 or
PLAIN. Maybe other clients have the same problem. My users like
Mozilla, so I wrote new code for Dovecot to speak CRAM-MD5, using
your mech-digest-md5.c as a reference.
Attached diff in two formats
i) for current CVS
ii) against last release
both tested and working with Mozilla and KMail's CRAM-MD5.
I
2007 Apr 25
0
bug? ldap auth CRAM-MD5
Hello list,
our users are authenticated against ldap-server.
anything works fine...
dovecot: imap-login: Login: user=<xxx>, method=PLAIN, rip=127.0.0.1,
lip=127.0.0.1, secured
but now we want to use secure passwords and not
only plain over ssl. so we configured dovecot to use
cram-md5 and configured the ldap-server with CRAM-MD5
passwords. as client we used thunderbird 2.0 and a
2010 Aug 07
1
dovecot.conf: mechanisms = plain login cram-md5 | Windows Live Mail: CRAM-MD5 authentication failed. This could (NOT) be due to a lack of memory on your system
/etc/dovecot.conf:
auth default {
mechanisms=plain login cram-md5
passdb {
#..............
Windows Live Mail:
CRAM-MD5 authentication failed. This could be due to a lack of memory on
your system.
Your IMAP command could not be sent to the server, due to non-network
errors. This could, for example, indicate a lack of memory on your system.
Configuration:
Account: Sheltoncomputers
2010 Sep 21
1
MD5 to CRAM-MD5 password conversion?
We have a plethora of accounts for which we would like to enable
CRAM-MD5 but their passwords are stored as MD5 hashes. Is there anything
we can do? Can we take a linux MD5 hashed password (e.g.
$1$fac330ee$wd6Tll...) and convert it to dovecot's CRAM-MD5 format (e.g.
{CRAM-MD5}b3f297...)?
Thanks!
2010 Feb 20
2
[AUTH] Extra @ in user and empty passwd with CRAM-MD5
Hi,
I got problem whith CRAM-MD5 auth (works fine with PLAIN):
------------------------------------------------------------------------------
Feb 20 13:15:02 auth(default): Info: new auth connection: pid=5026
Feb 20 13:15:06 auth(default): Info: client in: AUTH 1 CRAM-MD5
service=imap secured lip=87.98.131.8 rip=82.245.64.126 lport=143 rport=1130
Feb 20 13:15:06 auth(default): Info: client
2019 Jun 20
5
Help on CRAM-MD5
Hello,
The world is not black or white.
Yes CRAM-MD5 is old and his successor SCRAM-XXXXXX is not widely
available/implemented which is sad.
For your need, use TLS and forget about it.
Thunderbird is conservative. If you don't configure TLS or TLS is not
available, it try to use something that not expose the password.
There is plenty of context where TLS is not possible/desirable.
And
2006 Dec 18
2
[PATCH] Fix for dovecotpw on powerpc and other architectures
Hi, please apply the following patch to dovecotpw. Without this, it
will be unusable on powerpc and (maybe) other architectures where
the char is unsigned by default.
--- dovecot-1.0/src/util/dovecotpw.c (revisione 2066)
+++ dovecot-1.0.new/src/util/dovecotpw.c (copia locale)
@@ -40,7 +40,7 @@
const char *user = NULL;
char *scheme = NULL;
char *plaintext = NULL;
- char ch;
+