chrisleroi wrote:
hi, ive found the reason. i always did like: dbmail-users -u chris -p md5 -w xxx but i have to use -p plaintext because ldap itself converts the password to md5.
Most ldap installations I've seen don't use MD5, but SHA1 or SHA256.
stupid. but is this secure?
Only if the network between the host with dbmail-users and your ldap host is untrusted/insecure. Use an ssl-enabled ldap uri: ldaps://...
If you're talking to localhost, it's ok. -- ________________________________________________________________ Paul Stevens paul at nfg.nl NET FACILITIES GROUP GPG/PGP: 1024D/11F8CD31 The Netherlands________________________________http://www.nfg.nl _______________________________________________ DBmail mailing list DBmail@dbmail.org https://mailman.fastxs.nl/mailman/listinfo/dbmail
