[Dovecot] cram-md5 and users maintaining their own passwords?

Steinar Bang sb at dod.no
Sat Sep 13 15:48:38 EEST 2008


>>>>> Timo Sirainen <tss at iki.fi>:

> On Fri, 2008-09-12 at 20:17 +0200, Steinar Bang wrote:
>> Is there any other mechanism than using passwd files with md5-hashed
>> passwords created by dovecotpw that will support cram-md5
>> authentication? 

> You can use any "Lookup database" as listed in
> http://wiki.dovecot.org/PasswordDatabase

But that includes passwd and shadow, and I thought they couldn't be
used, even with md5 hashing of the passwords, because the md5 hash used
was different to the one of cram-md5?

If I can use the normal passwd/shadow of the system, that would be
exactly what I want.

>> Has anyone created setups where the passwd databases reside in the
>> individual users home directories?

> passdb passwd-file {
>   passwd-file = /home/%u/dovecot.passwd
> }

Ok.  Thanx.

> The performance might not be that great though since it'll have to
> open a lot of files. Also Dovecot never closes passwd files it has
> opened, so this method won't work if you have a lot of users (I guess
> a few hundred is still ok).

Ok, the machine will only everl serve 3-10 users (it's my home LAN
server), so that would probably never be a problem.

But if I actually can use the normal passwd of the machine, then all of
this is a non-issue.

Thanx!



More information about the dovecot mailing list