[Dovecot] Accessing plain text password from memory

Philipp Brüll philippbruell at gmail.com
Tue Dec 17 14:29:37 EET 2013


Hi Timo,

thanks for the answer. I'm working on a plug in with an similar 
architecture.

Is there also a way to pass that plain password to a mail filter script? 
Obviously, the %w option as mail filter script argument does not work.

Kind regards,
Philipp

On 13/12/13 15:47, Timo Sirainen wrote:
> On 13.12.2013, at 16.37, Stanislas SABATIER <s.sabatier at pobox.com> wrote:
>
>> Is there a way to retrieve the client's password in plain text from memory ?
>>
>> I don't store the password in plain text in my postgreSQL but I need it
>> when the client is connected to make crypto computation.
>>
>> If I write a plugin to do the job, how could I retrieve the plain text
>> password from master ?
>
> Assuming you you're using passdb sql and userdb prefetch and you want to access the password in imap/pop3/etc process, you can do:
>
> password_query = '%w' as userdb_password, ...
>
> Then the password will be available the same way as plugin { password } would be available (mail_user_plugin_getenv()).
>
> You could also write a passdb plugin you could access the password directly from auth_request->mech_password.
>


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4261 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20131217/a510997c/attachment-0001.bin>


More information about the dovecot mailing list