Sebastiaan van Erk writes:
However, the strange thing is that it DOES work when I set the LDAP password using ldappasswd (also using LDAP_AUTHBIND 0). When I do "authtest sebster" right after setting the password this way it shows me an {SSHA} password hash:# ldappasswd -W -D 'cn=admin,dc=dot' -s aaa 'uid=sebster,ou=users,dc=sebster,dc=com,dc=dot'After which # authtest sebster Authentication succeeded. Authenticated: sebster (uid 2000, gid 2000) Home Directory: /data/mail/popboxes/sebster-com/sebster Maildir: (none) Quota: (none) Encrypted Password: {SSHA}VozfaTyQG4Gm73fMAdpqyJ0Xz21Bp80B Cleartext Password: (none) Options: wbnodsn=1Courier authenticates fine against this hash (using LDAP_AUTHBIND 0). However as soon as I set the hash through squirrel mail (change password), it breaks.
Squirrelmail's SSHA password calculation appears to be broken.Courier's SSHA, as you've observed, works when you use OpenLDAP's own ldappasswd to set the password. End of story. If you get different results when using Squirrelmail, and when you use OpenLDAP's function, then one of them has to be right, and the other is broken.
pgpKacGM2BalL.pgp
Description: PGP signature
------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
