[Dovecot] Why does dovecot require the {} password sheme even if there is a $ crypt scheme.
The wiki[1] says: If all the passwords are in same format, you can use default_pass_scheme to specify it. Otherwise each password needs to be prefixed with "{password-scheme}", for example "{plain}plaintext-password".
Why doesn't dovecot recognize the crypt scheme identifier ($1$ for MD5-CRYPT, $6$ for SHA512-CRYPT etc.)? At the moment I have to have the following in my db for dovecot to work: {SHA512-CRYPT}$6$salt$passwordhash
It does, we use sha512 for long time in sql conf use default_pass_scheme = CRYPT
it uses the systen crypt then, (NO - this does NOT mean it uses the ancient 8 char limited crypt) it will use whatever your underlying operating system allows, and unless you are using something thats more than 10 years old, it will handle better.
in our sql table
$6$68341f21c4d70c67$D9Rbgw.Ecvfdbvfbfgfdbc.....................................etc
On 1/11/14, da-dovecotlist-15@abelonline.de <da-dovecotlist-15@abelonline.de> wrote:
The wiki[1] says: If all the passwords are in same format, you can use default_pass_scheme to specify it. Otherwise each password needs to be prefixed with "{password-scheme}", for example "{plain}plaintext-password".
Why doesn't dovecot recognize the crypt scheme identifier ($1$ for MD5-CRYPT, $6$ for SHA512-CRYPT etc.)? At the moment I have to have the following in my db for dovecot to work: {SHA512-CRYPT}$6$salt$passwordhash
Thanks! It does seem to work.
On Monday 13 January 2014 12:33:51 Nick Edwards wrote:
It does, we use sha512 for long time in sql conf use default_pass_scheme = CRYPT
it uses the systen crypt then, (NO - this does NOT mean it uses the ancient 8 char limited crypt) it will use whatever your underlying operating system allows, and unless you are using something thats more than 10 years old, it will handle better.
in our sql table
$6$68341f21c4d70c67$D9Rbgw.Ecvfdbvfbfgfdbc.................................. ...etc
On 1/11/14, da-dovecotlist-15@abelonline.de
<da-dovecotlist-15@abelonline.de> wrote:
The wiki[1] says: If all the passwords are in same format, you can use default_pass_scheme to specify it. Otherwise each password needs to be prefixed with "{password-scheme}", for example "{plain}plaintext-password".
Why doesn't dovecot recognize the crypt scheme identifier ($1$ for MD5-CRYPT, $6$ for SHA512-CRYPT etc.)? At the moment I have to have the following in my db for dovecot to work: {SHA512-CRYPT}$6$salt$passwordhash
participants (2)
-
da-dovecotlist-15@abelonline.de
-
Nick Edwards