Tip: update dovecot MD5 password from PAM
Aki Tuomi
aki.tuomi at dovecot.fi
Mon Mar 27 15:21:45 EEST 2017
On 27.03.2017 01:13, Ruga wrote:
> It is a jolly bad idea to use the same password for both email and system access.
>
> On TLS+plaintext, if your passwords are slurped by a python script, all accounts are compromised. Congratulations, the NSA will love you. On the other side of the ocean, however, there are European states where you must disclose the fact, or go to jail.
>
> (I tried to protect dovecot passwords with bcrypt, but the mail clients refused it.)
Uh, what? Mail clients do not see how you are storing passwords locally.
>
> Sent from ProtonMail Mobile
Aki
More information about the dovecot
mailing list