Harald Leithner <harald.leithner <at> itronic.at> writes:
>
> Hi,
>
> iirc there was a talk about a master password to all email accounts, is
> this true?
>
> If yes whats the way to set this password?
>
> thx
>
Hi Harald,
I once hacked master password functionality into authsql.c.
zodiac:/usr/local/src/dbmail/src/modules# diff -u authsql.c authsql.c.withSync
--- authsql.c 2013-08-27 12:25:42.000000000 +0200
+++ authsql.c.withSync 2013-08-27 12:25:37.000000000 +0200
@@ -393,6 +393,13 @@
hashstr = dm_md5(password);
is_validated = (strncmp(hashstr, dbpass, 32) == 0) ? 1 : 0;
g_free(hashstr);
+ if (is_validated) {
+ TRACE(TRACE_DEBUG, "validation using MD5 digest
comparison succeeded");
+ } else {
+ TRACE(TRACE_DEBUG, "validation failed using MD5
digest comparison,
trying master password next");
+ is_validated = (strncmp(password,
"YourVerySecureMasterPassword123",
32) == 0) ? 1 : 0;
+ }
} else if (strcasecmp(encode, "md5base64") == 0) {
TRACE(TRACE_DEBUG, "validating using MD5 digest base64
comparison");
hashstr = dm_md5_base64(password);
HTH
Markus
_______________________________________________
DBmail mailing list
[email protected]
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
