On 30/09/2010 18:48, Timo Sirainen wrote:
On Thu, 2010-09-30 at 08:08 +0100, Ed W wrote:
CRAM-MD5 doesn't work directly with proxying. It can't work, by CRAM-MD5
design. The only way to make it work is if your passdb lookup returns a
password, either the user's actual password in plaintext or some master
password, that the backends accepts with plaintext authentication.
I'm not quite sure I understand the nuances of that?
Yes I do have a passdb (on the remote machine) which returns a plain
password. Actually since it's DB driven I have already returned all the
information needed to auth the user on the proxying machine
The password query is the same on both sides and it looks like:
password_query = SELECT NULLIF(mail_host, '%l') as proxy,
NULLIF(mail_host, '%l') as host, \
email as user, password, \
Add: ..., password, password as pass, ..
Aha - this is the master login stuff. That does kind of make sense.
Quite subtle mind
Thanks for replying
Ed W
