2008/7/21 Randy Lewis <[EMAIL PROTECTED]>: > Juan Miscaro wrote: > > 2008/7/20 K.R. (Randy) Lewis <[EMAIL PROTECTED]>: > > > Juan Miscaro wrote: > > > Hi, I'm using Courier on OpenBSD. Can I use crypt-hashed passwords > with Courier? I have an old machine (with many users) I want to > migrate over to Courier and a MySQL backend. This server has > passwords hashed from crypt(). > > Thank you, > > /juan > > ------------------------------------------------------------------------- > This SF.Net email is sponsored by the Moblin Your Move Developer's > challenge > Build the coolest Linux based applications with Moblin SDK & win great > prizes > Grand prize is a trip for two to an Open Source event anywhere in the > world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > _______________________________________________ > courier-users mailing list > [email protected] > Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users > > > > > Yes, this works just fine (OpenBSD). > I did this some years ago, exactly, with a MySQL authentication setup. > > > Good to hear! So in authmysqlrc I use > > MYSQL_CRYPT_PWFIELD crypt > > Now what of the passwords in MySQL? For MD5 I believe a password > should look like: > > {MD5}passwordhash > > Where passwordhash is created like: > > $ echo password | userdbpw -md5 > > For crypt I can generate passwordhash: > > $ echo password | userdbpw > > but what about the password in MySQL? > > /juan > > > > Juan, > > You would use the generated 'crypt' password in that field. > > Here is an example (from a phpMyAdmin browse) record entry: > > [EMAIL PROTECTED] a8EbXixSSlcrA nju7xfr4 1002 1002 > /usr/Maildirs/XXXX/users/d.murphy NULL 10485760S > > The value: nju7xfr4 is the actual clear text password, but using 'crypt' > the result is: a8EbXixSSlcrA > > I set my authmysql to use (read) the 'crypt' field; but, I like to be able > to refer to the clear text > for those times when a client 'forgets' their password.
Having access to the actual p/w is nice but the rationale behind my initial post is to not have cleartext passwords on the server. /juan ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
