Hi Brian,
thank you for your answer and your explanation,
either I will recompile the courier-imap with change in the code or
I will install Dovecot Imap.
ciao,
Benarson
--- On Thu, 7/10/08, Brian Candler <[EMAIL PROTECTED]> wrote:
From: Brian Candler <[EMAIL PROTECTED]>
Subject: Re: [Courier-imap] courier-imap & authldap authentication FAILED
To: "Al Dancer" <[EMAIL PROTECTED]>
Cc: courier-imap@lists.sourceforge.net
Date: Thursday, July 10, 2008, 12:56 PM
On Thu, Jul 10, 2008 at 09:43:52AM -0700, Al Dancer wrote:
> How to get the salt MD5 password stored in LDAP working with authldap
?
...
> Encrypted Password: {MD5}$1$vQjQZUcX$jATmvj1Ow2d2yAN5RDHH3.
...
> I've tried to replace the salt MD5 password to {crypt} in LDAP,
and it
> worked.
This needs documenting :-(
Anyway, look in courier-authlib/checkpassword.c and
courier-authlib/checkpasswordmd5.c and you'll see that {MD5} can only be
followed by a base64-encoded, unsalted MD5 of the password (24 characters)
If there is no prefix at all, you can use a Unix-style salted MD5 starting
"$1$..."
If the prefix is {crypt} it will use your system crypt() function, which
typically also implements the same Unix-style salted MD5.
So if you want {MD5}$1$... to work, then you'll need to make a minor code
change.
Alternatively, you can use LDAP_AUTHBIND 1 so that it becomes the LDAP
server's responsibility to compare the password, rather than
courier-authlib's.
HTH,
Brian.
-------------------------------------------------------------------------
Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW!
Studies have shown that voting for your favorite open source project,
along with a healthy diet, reduces your potential for chronic lameness
and boredom. Vote Now at http://www.sourceforge.net/community/cca08
_______________________________________________
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
