how to enable digestmd5 and crammd5 ?
Carson Gaspar
carson at taltos.org
Fri Apr 20 01:31:41 EDT 2007
Goetz Babin-Ebell wrote:
> The problem is that cram-md5 and digest-md5 need direct access to the
> pass phrase in plain text.
> AFAIK LDAP doesn't support this.
> You have to use TLS if you want to transmit the pass phrase securely...
Technically not true, you need the password hashed with the username and
realm. But cyrus-sasl dropped support for storing the hashes a long time
ago and has never brought it back.
I can't comment on the LDAP plugin's ability to store/retreive plain
text passwords, as I've never used it.
--
Carson
More information about the Info-cyrus
mailing list