[Dovecot] Storing passwords encrypted... bcrypt?

Pascal Volk user+dovecot at localhost.localdomain.org
Thu Jan 5 04:26:59 EET 2012


On 01/05/2012 02:59 AM Noel Butler wrote:
> We use  Crypt::PasswdMD5 -
> unix_md5_crypt()  for all general password storage including mail/ftp
> etc, except for web, where we need to use apache_md5_crypt().

Huh, why do you need to store passwords in Apaches md5 crypt() format?

,--[ Apache config ]--
| AuthType Basic
| AuthName "bla …"
| AuthBasicProvider dbm
| AuthDBMUserFile /path/2/.htpasswd
| Require valid-user
| Order allow,deny
| Allow from 203.0.113.0/24 2001:db8::/32
| Satisfy any
`--

,--[ stdin/stdout ]--
| user at localhost ~ $  python
| Python 2.5.4 (r254:67916, Feb 17 2009, 20:16:45) 
| [GCC 4.3.3] on linux2
| Type "help", "copyright", "credits" or "license" for more information.
| >>> import anydbm
| >>> dbm = anydbm.open('/path/2/.htpasswd')
| >>> dbm['user']
| '$6$Rn6L.3hT2x6dnX0t$d0/Tx.Ps3KSRxxm.ggFBYqum54/k8JmDzUcpoCXre88cBEXK8WB.Vdb1YzN.8fOvz3fJU4uLgW0/AlTiB9Ui2.::Real Name'
| >>> 
`--

Regards,
Pascal
-- 
The trapper recommends today: deadbeef.1200503 at localdomain.org



More information about the dovecot mailing list