[Dovecot] Possible bug with proxy in 2.0.4
Ed W
lists at wildgooses.com
Fri Oct 1 17:25:22 EEST 2010
On 30/09/2010 18:48, Timo Sirainen wrote:
> On Thu, 2010-09-30 at 08:08 +0100, Ed W wrote:
>>> CRAM-MD5 doesn't work directly with proxying. It can't work, by CRAM-MD5 design. The only way to make it work is if your passdb lookup returns a password, either the user's actual password in plaintext or some master password, that the backends accepts with plaintext authentication.
>> I'm not quite sure I understand the nuances of that?
>>
>> Yes I do have a passdb (on the remote machine) which returns a plain
>> password. Actually since it's DB driven I have already returned all the
>> information needed to auth the user on the proxying machine
>>
>> The password query is the same on both sides and it looks like:
>>
>> password_query = SELECT NULLIF(mail_host, '%l') as proxy,
>> NULLIF(mail_host, '%l') as host, \
>> email as user, password, \
> Add: ..., password, password as pass, ..
>
>
Aha - this is the master login stuff. That does kind of make sense.
Quite subtle mind
Thanks for replying
Ed W
More information about the dovecot
mailing list