[Dovecot] 1.0rc7 - dumb question
Anand Buddhdev
arb at anand.org
Thu Sep 14 22:20:28 EEST 2006
On Thursday 14 September 2006 21:13, Odhiambo WASHINGTON wrote:
Hi Wash,
> Hi John,
>
> Let me understand this correctly.
>
> You're saying IMAPS will work with a setting such as below??
>
> auth default {
> mechanisms = digest-md5
> passdb pam {
> args = *
> }
> userdb passwd {
> args = /etc/master.passwd
> }
>
> If yes, then I am inclined to ask why POP3S would not work with the
> same.
>
> Sorry, questions still dumb ;)
The above can't work (for POP or IMAP). For the DIGEST-MD5 auth
mechanism to work, Dovecot needs access to the plain text password.
However, the password is stored in an encrypted form
in /etc/master.passwd. With encrypted password in /etc/master.passwd,
you can only use the PLAIN mechanism.
What John was saying is that since the password has to be transmitted in
the clear for PLAIN, it's better to use transport-level security, ie.
IMAPS and POP3S.
--
Anand
More information about the dovecot
mailing list