On Mon, Aug 07, 2006 at 11:01:46AM -0400, Roberto C. Sanchez wrote:
> Aug 7 10:58:52 arecibo authdaemond.pgsql: supplied password 'secret'
> does not match encrypted password '$1$5ebe2294ecd0e0f08eab7690d2a6ee69'
That encrypted password is in a broken format.
If it's a Unix MD5 crypt, it should be $1$..salt..$..hash..
If it's a plain MD5 hash, it should be a base64-encoded MD5 hash with no
preamble.
What you have written is neither. It looks like a bastardisation of $1$ plus
a hex (not base64) digest.
Testing:
irb(main):007:0> Digest::MD5.hexdigest('secret')
=> "5ebe2294ecd0e0f08eab7690d2a6ee69"
irb(main):008:0>
Yep. So I think you need either:
irb(main):009:0> [Digest::MD5.digest('secret')].pack("m")
=> "Xr4ilOzQ4PCOq3aQ0qbuaQ==\n"
or:
irb(main):010:0> "secret".crypt("$1$abcdefgh$")
=> "$1$abcdefgh$cHJi5PXp/ki/ktXzqlk6I1"
So try 'Xr4ilOzQ4PCOq3aQ0qbuaQ==' or '$1$abcdefgh$cHJi5PXp/ki/ktXzqlk6I1' in
your encrypted password column.
This area is certainly lacking in the documentation though.
Regards,
Brian.
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Courier-imap mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
