[Dovecot] Password Encryption
Hi all. I hope this is not a RTFM-type question, but I've been unable to find a searchable archive of this mailing list.......
I recently began investigating using Dovecot/Postfix/MySQL solution. I've been following the documentation http://wiki.dovecot.org/HowTo/DovecotLDAPostfixAdminMySQL?highlight=%28m ysql%29
While everything seems to have gone right, I have been unable to successfully login to the IMAP server using Outlook Express.
It seems that the problem may relate to PostfixAdmin storing passwords in the mysql database md5 encrypted, and Dovecot is not able to read them, but I am not certain.
The error when a client logs in is something like
dovecot: auth-worker(default): plain_md5_verify(testuser1@mydomain.com): Invalid password encoding
David Morrow
Technical Systems Lead
Autodata Solutions Company
David.Morrow@Autodata.net <mailto:David.Morrow@Autodata.net>
http://www.autodatasolutions.com <http://www.autodatasolutions.com/>
Tel: (519) 963-3020
Fax: (519) 451-6615
Think slowly. Act quickly.
This message has originated from Autodata Solutions. The attached material is the Confidential and Proprietary Information of Autodata Solutions. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please delete this message and notify the Autodata system administrator at Administrator@autodata.net <mailto:Administrator@autodata.net <mailto:Administrator@autodata.net> >
On Fri, Aug 03, 2007 at 08:35:59AM -0400, Dave Morrow wrote:
While everything seems to have gone right, I have been unable to successfully login to the IMAP server using Outlook Express.
It seems that the problem may relate to PostfixAdmin storing passwords in the mysql database md5 encrypted, and Dovecot is not able to read them, but I am not certain.
This wiki page may help you: http://wiki.dovecot.org/Debugging/Authentication
Geert-----Original Message----- From: Geert Hendrickx [mailto:ghen@telenet.be] Sent: Friday, August 03, 2007 9:07 AM To: Dave Morrow Cc: dovecot@dovecot.org Subject: Re: [Dovecot] Password Encryption
While everything seems to have gone right, I have been unable to successfully login to the IMAP server using Outlook Express.
It seems that the problem may relate to PostfixAdmin storing passwords in the mysql database md5 encrypted, and Dovecot is not able to read
On Fri, Aug 03, 2007 at 08:35:59AM -0400, Dave Morrow wrote: them, but
I am not certain.
This wiki page may help you: http://wiki.dovecot.org/Debugging/Authentication
Geert
Thanks Geert.
My logs are showing this. I suspect the md5 format that PostfixAdmin is inserting the password to the database with is not the same as the Dovecot md5 encryption....... :(
Aug 3 11:43:51 mymailserver dovecot: auth-worker(default): sql(testuser1@mydomain.com,::ffff:172.16.140.105): query: SELECT username as user, password, concat('/var/vmail/', maildir) as userdb_home, concat('maildir:/var/vmail/', maildir) as userdb_mail, 101 as userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = 'testuser1@mydomain.com' AND active = '1' Aug 3 11:43:51 mymailserver dovecot: auth(default): client in: AUTH 1 PLAIN service=IMAP lip=::ffff:172.16.140.118 rip=::ffff:172.16.140.105 resp=AHRlc3R1c2VyMUBxYS1qYWdtYWlsLmF1dG9kYXRhLm5ldABwYXNzd29yZA== Aug 3 11:43:51 mymailserver dovecot: auth-worker(default): plain_md5_verify(testuser1@mydomain.com): Invalid password encoding Aug 3 11:43:51 mymailserver dovecot: auth-worker(default): sql(testuser1@mydomain.com,::ffff:172.16.140.105): Password mismatch Aug 3 11:43:51 mymailserver dovecot: auth-worker(default): sql(testuser1@mydomain.com,::ffff:172.16.140.105): PLAIN-MD5(password) != '$1$06c431fd$5eVxbTleXD2.Zo9sDXX2Z0' Aug 3 11:43:51 mymailserver dovecot: auth(default): client out: FAIL 1 user=testuser1@mydomain.com Aug 3 11:43:53 mymailserver dovecot: imap-login: Disconnected: user=<testuser1@mydomain.com>, method=PLAIN, rip=::ffff:172.16.140.105, lip=::ffff:172.16.140.118
On Fri, 2007-08-03 at 12:29 -0400, Dave Morrow wrote:
My logs are showing this. I suspect the md5 format that PostfixAdmin is inserting the password to the database with is not the same as the Dovecot md5 encryption....... :( .. plain_md5_verify(testuser1@mydomain.com): Invalid password encoding
Yes, that's what this means.
Maybe it's using MD5-CRYPT? Seeing an example password would help. Also see http://wiki.dovecot.org/Authentication/PasswordSchemes
participants (3)
-
Dave Morrow
-
Geert Hendrickx
-
Timo Sirainen