On Thu, 2010-09-30 at 08:08 +0100, Ed W wrote:
CRAM-MD5 doesn't work directly with proxying. It can't work, by CRAM-MD5 design. The only way to make it work is if your passdb lookup returns a password, either the user's actual password in plaintext or some master password, that the backends accepts with plaintext authentication.
I'm not quite sure I understand the nuances of that?
Yes I do have a passdb (on the remote machine) which returns a plain password. Actually since it's DB driven I have already returned all the information needed to auth the user on the proxying machine
The password query is the same on both sides and it looks like:
password_query = SELECT NULLIF(mail_host, '%l') as proxy, NULLIF(mail_host, '%l') as host,
email as user, password, \
Add: ..., password, password as pass, ..