We are attempting to move our ISP's mail system to courier and are having some problems with authentication. I have tried getting the authmysql module going and have succeeded with plain text passwords and base-64 encoded MD5 hashes (generated by userdbpw). However, our entire user database currently stores passwords using 32-digit hexadecimal, which I believe is not supported by the authmysql module???
Guess thats a simple hexhash of the password ? Formats without salt wont be compatible with anything.
We have somewhere in the region of 70,000 mailboxes, so there is no way we can get every user to reset their password in base-64 encoded format - and we do not store clear text passwords anywhere. Can anybody think of a way of working-around this problem? I have tried to get courier to use PAM authentication and then use pam_mysql to authenticate - I haven't succeeded here yet - and from what I read we wouldn't be able to return the maildir directory to courier using this method either?
We are using Stable Debian Woody - Courier 1.4.3 etc. If I build from source - is there a way of getting around the base-64 vs. 32-digit hex MD5 issues?
hack authmysql according to your needs, one could even update the stored format 'on the fly' at the first login of every user.
Roland
-------------------------------------------------------
This SF.Net email is sponsored by Sleepycat Software
Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to deliver higher performing products faster, at low TCO.
http://www.sleepycat.com/telcomwpreg.php?From=osdnemail3
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
