how to enable digestmd5 and crammd5 ?

Carson Gaspar carson at
Fri Apr 20 01:31:41 EDT 2007

Goetz Babin-Ebell wrote:

> The problem is that cram-md5 and digest-md5 need direct access to the
> pass phrase in plain text.
> AFAIK LDAP doesn't support this.
> You have to use TLS if you want to transmit the pass phrase securely...

Technically not true, you need the password hashed with the username and 
realm. But cyrus-sasl dropped support for storing the hashes a long time 
ago and has never brought it back.

I can't comment on the LDAP plugin's ability to store/retreive plain 
text passwords, as I've never used it.


More information about the Info-cyrus mailing list