Requested CRAM-MD5 scheme, but we have only CRYPT
Alexander Dalloz
ad+lists at uni-x.org
Thu Dec 2 20:47:06 UTC 2021
Am 02.12.2021 um 10:11 schrieb Christian Mack:
> You only can use CRAM-MD5 when your authentication source provides plain
> passwords.
And that's the biggest issue with these shared secret authentication
mechanisms: that you have to store the passwords unencrypted/unsalted.
Never a good idea to store passwords in plain text.
Alexander
More information about the dovecot
mailing list