Re: What form should query_credentials return?
On Mon, Sep 08, 2014 at 07:08:54AM -0500, Nolan Darilek wrote: > I'm struggling to get OpenSMTPD working with DBMail. Seems I'm almost > there but not quite. Mail is arriving into my account, but I can't seem > to authenticate against the database due to authentication failures. > > Currently DBMail is storing my password unencrypted, and it occurs to me > that perhaps OpenSMTPD is expecting an encrypted password from > query_credentials. Yes, I know this is a bad idea, and I fully intend to > fix it, but my intent was to minimize moving parts. > > I found a link that seems to indicate query_credentials expects a > password returned in encrypt(3) format. Is this accurate? > Yes, OpenSMTPD uses the host system's crypt(3) function. It expects the passwords to be returned as crypt(3)-encrypted passwords. > If so, given this from DBMail's docs: > > -p pwtype > Password type may be one of the following: plaintext, crypt, md5-hash, > md5-digest, crypt-raw, md5-hash-raw, md5-digest-raw, md5-base64, > md5-base64-raw. > > Which should I use such that query_credentials returns what OpenSMTPD > expects? > crypt > > Thanks, I'll move on to sharing configs if I'm on the wrong track with > the password format. I wanted to check that first. > -- Gilles Chehade https://www.poolp.org @poolpOrg -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
Re: What form should query_credentials return?
On 09/08/14 14:08, Nolan Darilek wrote: > I'm struggling to get OpenSMTPD working with DBMail. Seems I'm almost > there but not quite. Mail is arriving into my account, but I can't seem > to authenticate against the database due to authentication failures. > > Currently DBMail is storing my password unencrypted, and it occurs to me > that perhaps OpenSMTPD is expecting an encrypted password from > query_credentials. Yes, I know this is a bad idea, and I fully intend to > fix it, but my intent was to minimize moving parts. > > I found a link that seems to indicate query_credentials expects a > password returned in encrypt(3) format. Is this accurate? > > If so, given this from DBMail's docs: > > -p pwtype > Password type may be one of the following: plaintext, crypt, md5-hash, > md5-digest, crypt-raw, md5-hash-raw, md5-digest-raw, md5-base64, > md5-base64-raw. > > Which should I use such that query_credentials returns what OpenSMTPD > expects? > I think crypt would be a good choice since opensmtpd uses crypt(3) to check for passwords. Cheers Giovanni -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
What form should query_credentials return?
I'm struggling to get OpenSMTPD working with DBMail. Seems I'm almost there but not quite. Mail is arriving into my account, but I can't seem to authenticate against the database due to authentication failures. Currently DBMail is storing my password unencrypted, and it occurs to me that perhaps OpenSMTPD is expecting an encrypted password from query_credentials. Yes, I know this is a bad idea, and I fully intend to fix it, but my intent was to minimize moving parts. I found a link that seems to indicate query_credentials expects a password returned in encrypt(3) format. Is this accurate? If so, given this from DBMail's docs: -p pwtype Password type may be one of the following: plaintext, crypt, md5-hash, md5-digest, crypt-raw, md5-hash-raw, md5-digest-raw, md5-base64, md5-base64-raw. Which should I use such that query_credentials returns what OpenSMTPD expects? Thanks, I'll move on to sharing configs if I'm on the wrong track with the password format. I wanted to check that first. -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org