Displaying 20 results from an estimated 9000 matches similar to: "PLAIN-MD5 password scheme with salt?"
2011 Jun 02
1
Problems in auth when switching from PLAIN-MD5
Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using
PLAIN-MD5 as pass default_pass_scheme everything was working fine. However i
wanted to change the pass_scheme to something stronger than plain-md5, so i
started by reading the wiki.
I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes
But when i comment out "default_pass_scheme" and i create the
2010 Jul 27
4
SSHA256 scheme
Hi again,
I`m a bit confused how to store a SSHA256 password in the database and
I can`t find any information in the wiki.
Do I have to store the SHA256 hash and the salt separately (what would
the password_query be like in this way) or just the final SSHA256 hash?
Regards
Patrick
2014 Jan 11
1
Why does dovecot require the {} password sheme even if there is a $ crypt scheme.
The wiki[1] says:
If all the passwords are in same format, you can use default_pass_scheme to specify it. Otherwise each password needs to be prefixed with "{password-scheme}", for example "{plain}plaintext-password".
Why doesn't dovecot recognize the crypt scheme identifier ($1$ for MD5-CRYPT, $6$ for SHA512-CRYPT etc.)? At the moment I have to have the following in my db
2017 Sep 08
2
Automatic DB password hash scheme selection
Hi all,
Is there a way to get dovecot to recognize arbitrary password hash
schemes when looking up a password in a database? I originally set up
with #default_pass_scheme = MD5, and I would like to migrate to SHA512.
Seeing as the scheme is actually stored in the password column along
with the password in the format $_<scheme#>_$_<salt>_$_<passwordhash>_,
it seems to me that
2007 Jan 24
1
default_pass_scheme = PLAIN-MD5 dont work :(
I config postfix+mysql+dovecot for SASL SMTP autentication.
It works if set:
default_pass_scheme = PLAIN
and store plain-text password in mysql
I'm change default_pass_scheme = PLAIN with
default_pass_scheme = PLAIN-MD5
an store password in mysql with md5('passwd')
and dovecotpw -s PLAIN-MD5 -p test
{PLAIN-MD5}
and md5("test") = 098f6bcd4621d373cade4e832627b4f6
but
2003 Sep 15
1
md5 salt
Hi,
I was looking at the crypt(3) manpage, and I'm having a hard time figuring
out what the allowed characters are for the salt in md5 and blowfish
encryption. For DES, it clearly states that only numbers, letters and
digits may be used.
Does anyone know the rules for md5/blowfish salt characters?
Thanks,
Charles
--
Charles Sprickman
spork@inch.com
2009 Jun 22
1
CRAM-MD5 authentication but plain-md5 password storage.
Hi all,
Got a question on configuring dovecot, I'm still new at this so I
might be doing this all wrong.
I want dovecot to authenticate the mail client using CRAM-MD5 so I've
setup the config in dovecot.conf:
auth default {
mechanisms = cram-md5
passdb sql {
# Path for SQL configuration file, see doc/dovecot-sql-example.conf
args = /etc/dovecot/dovecot-sql.conf
2007 Feb 21
1
login and plain-md5 in sql query
i use last dovecot rc23 with users/passwords in mysql
1) How can i define a sql query for each auth mechanism ?
2)Why i can't set "default_pass_scheme = login" in my dovecot-sql.conf? :
dovecot: Feb 21 09:46:22 Info: auth(default): client in: AUTH 1
PLAIN service=IMAP secured lip=127.0.0.1 rip=127.0.0.1
resp=AGFkaUBhZHJpYW4uZXUAcGFyb2xh
dovecot: Feb 21
2009 Nov 09
4
Decrypt a admin password (with salt)
Hello,
I want decrypt a password which is encrypted by MD5.
there are 4 functions which i am using :
# Encrypts some data with the salt.
def self.encrypt(password, salt)
Digest::SHA1.hexdigest("--#{salt}--#{password}--")
end
# Encrypts the password with the user salt
def encrypt(password)
self.class.encrypt(password, salt)
end
def authenticated?(password)
2004 Dec 31
4
PLAIN-MD5 passwords?
After I found out that {CRYPT} doesn't support passwords longer than 8
characters, I decided to switch over to MD5 for user passwords in my LDAP
database. However, while I have no problem with Postfix + SASL, Dovecot fails
to authenticate.
Relevant bits from /etc/dovecot-ldap.conf:
user_attrs = mailAddress,,,,,
# The search string is identical to what's found in /etc/saslauthd.conf:
2010 Feb 14
3
salted passwords
The idea of salted hash algorithms is to generate a different hash
even if the same text is entered. That can be easily seen with dovecotpw:
using NON-salted SHA256, same hash is generated for a given password
[root at correio ~]# dovecotpw -s SHA256 -p 123
{SHA256}pmWkWSBCL51Bfkhn79xPuKBKHz//H6B+mY6G9/eieuM=
[root at correio ~]# dovecotpw -s SHA256 -p 123
2007 May 30
1
Dovecot support for smd5 and ldap-md5
Working with a dovecot migration, I am curious what version (if any)
of Dovecot (dovecot-auth) supports SMD5 and ldap-MD5 when using
Dovecot -> OpenLDAP direct binding?
Thank you!
Eric
2010 Aug 07
1
dovecot.conf: mechanisms = plain login cram-md5 | Windows Live Mail: CRAM-MD5 authentication failed. This could (NOT) be due to a lack of memory on your system
/etc/dovecot.conf:
auth default {
mechanisms=plain login cram-md5
passdb {
#..............
Windows Live Mail:
CRAM-MD5 authentication failed. This could be due to a lack of memory on
your system.
Your IMAP command could not be sent to the server, due to non-network
errors. This could, for example, indicate a lack of memory on your system.
Configuration:
Account: Sheltoncomputers
2007 Jan 23
1
dovecotpw/sql crypt scheme core dump with rc17-19
Platform is Solaris 8 on a 280R.
I'm setting up a new installation of Dovecot, and I ran into some troubles
that I've partly tracked down.
I setup auth/user dbs with LDAP initially, and things worked well.
Passwords are stored as "{crypt}zxcv..." in LDAP.
I setup SQL, and began getting this:
dovecot: Jan 23 16:37:47 Error: child 8718 (auth-worker) killed with signal 11
2016 May 01
3
Changing Password Schemes
You do need to complete the query. Don't just replace your query with the one I wrote. You have to have a WHERE clause, and you might need to return other fields.
Keep the password query you had before, just replace the 'password' column with "IF( ... ) as password"
The query as you have it now simply returns all the passwords for all the users, because you don't have a
2006 Nov 17
2
dovecot and ldap passwords.
Hallo.
First of all I'm sorry for my bad english.
I have a question about how dovecot use passwords.
I have all my mail accounts in a ldap database.
The user password are stored in form: {crypt}mypasswd.
In dovecot-ldap.conf I have default_pass_scheme = CRYPT.
All is working fine.
The problem in the crypt scheme is that I can't have passwords more than
8 characters long.
So I've tried
2016 May 01
2
Changing Password Schemes
First of all, you can probably go online before you convert all passwords. You can modify your query in dovecot-sql.conf.ext to something like the following:
SELECT IF(crypt_pass IS NULL OR crypt_pass='', CONCAT('{PLAIN}',plain_pass), crypt_pass) as password FROM mailuser ..
This is assuming that:
* for incoming users, you have a plain_pass column containing just the plaintext
2017 Oct 04
3
moving from mysql to pgsql
Hello,
I hope that this mailing list is "alive", since I am looking for a
solution for my problem for a long time.
I would like to migrate my existing dovecot installation from mysql to
pgsql. But I have problems with the passwords when using pgsql.
The existing and working mysql-based installation looks like this:
dovecot-sql.conf.ext:
driver = mysql
default_pass_scheme =
2008 Jul 08
2
Dovecot CRAM-MD5 & DIGEST-MD5
Hello all.
Im try to make a SMTP Auth using Docecot SASL.
Im use swaks for tests.
Im store users in LDAP.
As im understand for CRAM & DIGEST MD5 we need to store pass in a clear
text?... Ok.
mail: admin3 at domain.off
userPassword: 123 <- Clear text
What im do
%swaks -a CRAM-MD5 -au admin3 at domain.off -ap 123
To: admin3 at domain.off
=== Trying mx.domain.off:25...
=== Connected to
2012 Jan 24
2
Password auth scheme question with mysql
Hi, I have a current auth database using mysql with a "password" column
in plain text. The config has "default_pass_scheme = PLAIN" specified
In preparation for a more adaptable system I changed a password entry
from "asdf" to "{PLAIN}asdf", but now auth fails. Works fine if I
change it back to just "asdf". (I don't believe it's a