[Dovecot] SQL field format for digest-md5?
Timo Sirainen
tss at iki.fi
Wed Dec 24 08:07:28 EET 2008
On Dec 23, 2008, at 11:51 PM, Darren Pilgrim wrote:
> Timo Sirainen wrote:
>> On Dec 23, 2008, at 8:57 PM, Darren Pilgrim wrote:
>>> I'm enabling digest-md5 authentication with "user at example.com"
>>> username and plain-text passwords stored in a MySQL database.
>>> What should the password field contain in order to work with
>>> digest-md5? Would the following:
>>>
>>> SELECT CONCAT('{digest-md5}', MD5(CONCAT(username, '::',
>>> password))) AS password ...
>>>
>>> be correct?
>> Don't try to do anything special. Just:
>> SELECT username as user, password FROM ..
>
> That's what I already have. It works for plain, login and cram-md5;
> however, but digest-md5 fails. Reading the wiki page[1] for digest-
> md5 says the user at example.com username format breaks because I'm not
> using realms. My options are either set auth_realms or store
> passwords using the DIGEST-MD5 scheme. I'm trying to do the later
> since I can't realistically set or maintain auth_realms.
So you're using Dovecot v1.0? I think issues related to this are fixed
in v1.1 already.
Anyway that SELECT looks correct. Have you tested that it produces the
exact same result as when running dovecotpw -s digest-md5? What does
it log with auth_debug_passwords=yes?
More information about the dovecot
mailing list