> Sam Varshavchik <[email protected]> :
>> - the POP or IMAP server crypt()'s the user entered password
>> - the POP or IMAP server compares crypt()'d ones and gives his
>> response
>This is a correct description.
I read that crypt() require a "salt".
crypt() is called:
encrypted_pass = crypt("a_salt", "the_clear_pass")
If "a_salt" or "the_clear_pass" is different, the "encrypted_pass" will
be different.
Therefore, the salt used to initially encrypt the password must be the
same that the one used to generate the user entered one.
How to they use the same salt?
--
Architecte Informatique chez Blueline/Gulfsat:
Administration Systeme, Recherche & Developpement
+261 3456 000 19
------------------------------------------------------------------------------
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
