Changing Password Schemes

Fri Apr 29 13:07:35 UTC 2016

converting the passwords in the database from clear/plain text to 
SHA512-CRYPT

------------
You have a good day now, en mag jou môre ook so wees,

Carl A Jeptha

On 2016-04-29 15:02, Steffen Kaiser wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Fri, 29 Apr 2016, Carl A Jeptha wrote:
>
>> Good Day,
>> I have been following this tutorial without much luck - 
>> http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes#CA-26af2b83a43b8100522c57565773f605c21f2f27_1
>>
>> It is obvious to me that I am not following the instructions 
>> correctly and need to be shown what I am misunderstanding.
>>
>> I have an old postfix + dovecot + Roundcube mailserver 
>> (mail.domain.Tld). Server clock is loosing time and adjusting it 
>> causes dovecot to kill itself, we cannot install more memory, bigger 
>> hard-drives, etc.
>>
>> I have built a new server box (mail2.domain.Tld) With Postfix + 
>> dovecot + Roundcube. This server is functioning, with a client's new 
>> domain, and my personal domain. it's password system is SHA512-CRYPT.
>>
>> I have imported the users from the old server over to the new server. 
>> I have created a new column "plain_pass" for the plain passwords.
>>
>> I will be using imapsync to transfer the mail folders from the one 
>> server to the other, but will not proceed until I fix this issue.
>
> Actually, _what_ issue?
>
>> # 2.2.18: /etc/dovecot/dovecot.conf
>> # Pigeonhole version 0.4.8 (0c4ae064f307+)
>> # OS: Linux 4.2.0-35-generic x86_64 Ubuntu 15.10 ext4
>> auth_mechanisms = plain login
>> first_valid_gid = 8
>> first_valid_uid = 150
>> last_valid_gid = 8
>> last_valid_uid = 150
>> listen = *
>> mail_gid = mail
>> mail_location = maildir:/var/vmail/%d/%n
>> mail_uid = vmail
>> namespace inbox {
>>  inbox = yes
>>  location =
>>  mailbox Drafts {
>>    special_use = \Drafts
>>  }
>>  mailbox Junk {
>>    special_use = \Junk
>>  }
>>  mailbox Sent {
>>    special_use = \Sent
>>  }
>>  mailbox "Sent Messages" {
>>    special_use = \Sent
>>  }
>>  mailbox Trash {
>>    special_use = \Trash
>>  }
>>  prefix =
>> }
>> passdb {
>>  args = /etc/dovecot/dovecot-sql.conf.ext
>>  driver = sql
>> }
>> plugin {
>>  quota_grace = 10%%
>>  quota_rule = *:storage=1G
>>  quota_rule2 = Trash:storage=+100M
>>  quota_warning = storage=95%% quota-warning 95 %u
>>  quota_warning2 = storage=80%% quota-warning 80 %u
>> }
>> postmaster_address = postmaster at airnet.ca
>> protocols = imap pop3 lmtp lmtp pop3
>> service auth {
>>  unix_listener /var/spool/postfix/private/auth {
>>    group = postfix
>>    mode = 0666
>>    user = postfix
>>  }
>>  unix_listener auth-userdb {
>>    group = mail
>>    mode = 0666
>>    user = vmail
>>  }
>> }
>> service imap-login {
>>  inet_listener imap {
>>    port = 143
>>  }
>>  inet_listener imaps {
>>    port = 993
>>    ssl = yes
>>  }
>> }
>> service imap-postlogin {
>>  executable = script-login /usr/local/etc/popafter.sh
>>  user = $default_internal_user
>> }
>> service imap {
>>  executable = imap imap-postlogin
>> }
>> service pop3-login {
>>  inet_listener pop3 {
>>    port = 110
>>  }
>>  inet_listener pop3s {
>>    port = 995
>>    ssl = yes
>>  }
>> }
>> service pop3-postlogin {
>>  executable = script-login /usr/local/etc/popafter.sh
>>  user = $default_internal_user
>> }
>> service pop3 {
>>  executable = pop3 pop3-postlogin
>> }
>> ssl_cert = </etc/ssl/certs/ssl-cert-snakeoil.pem
>> ssl_cipher_list = 
>> ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
>> ssl_dh_parameters_length = 2048
>> ssl_key = </etc/ssl/private/ssl-cert-snakeoil.key
>> ssl_prefer_server_ciphers = yes
>> ssl_protocols = !SSLv2 !SSLv3
>> userdb {
>>  driver = prefetch
>> }
>> userdb {
>>  args = /etc/dovecot/dovecot-sql.conf.ext
>>  driver = sql
>> }
>>
>> -- ------------ You have a good day now, en mag jou môre ook so wees, 
>> Carl A Jeptha
>>
>
> - -- Steffen Kaiser
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
>
> iQEVAwUBVyNbaXz1H7kL/d9rAQIbnQgAyiX9368WmhyTfTY38YfNWTXW/UW/b/0t
> PqyEPx/DLLLW60aSkA0NqJa0nKzsoHip8GQfO/ZY3fqdTdep2rW4NbZW6o8/rFwW
> dmNTarux25w7dNvRGWrGZiXTnGAlwQtnJTr8wuwqi2JILqPoh1dL1Ubo90ABTERv
> G8q2NXgtD4m0a2aJqmyMXRmep8ocMy3IEIg8JZ/xJtmL86d4bP7kagI2yP7viIUx
> EY9JSazl/u6iVIrI6jFDuFUfzAs4dr+wcQHhAM0sY8mFUVYFsdjqxCbytLy39q4O
> zyj66UNAGR5yAnXAlADJ7G1fIghskFBa82p/t8QCX9VNSvOnuklqGQ==
> =Q4iK
> -----END PGP SIGNATURE-----