CRAM-MD5 with saslauthd

Geoff Winkless cyrus at geoff.dj
Thu Mar 12 12:42:26 EDT 2015


On 12 March 2015 at 16:04, Vladislav Kurz <vladislav.kurz at webstep.net>
wrote:

>  On Thursday 12 of March 2015 Ram <ram at netcore.co.in> wrote:
>
>
>
> > > You need access to plaintext passwords for CRAM/DIGEST-MD5.
>
> > >
>
> > > LDAP and saslauthd do not provide that.
>
> >
>
> > How can I use CRAM-MD5 with passwords stored in LDAP (in MD5 format )
>
> > then ?
>
> >
>
> > I need to disable plain & login methods and cannot store passwords in
>
> > plain text too.
>
>
>
> I'm afraid you are trying to do impossible things. Read more about how
> cram-md5 works. You can eforce ssl/tls encryption and use plain/login auth.
>

The definition of "plain text" doesn't mean that it cannot be stored in a
retrievable form. You could make a fairly simple patch to retrieve the
ciphertext from a ROT13 store, as an extreme example :)
​
G
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20150312/1782d8e6/attachment.html 


More information about the Info-cyrus mailing list