Control: forwarded -1 https://github.com/cyrusimap/cyrus-sasl/issues/141
On Mon, 9 Nov 2015 11:24:18 -0600 Dan White <dwh...@olp.net> wrote:
On 11/09/15 19:29 +0300, Max Kosmach wrote: >Hi > >I have found patch for earlier version of cyrus-sasl that adds an ability to use encrypted passwords in db. >Patch uses unix crypt(). > >http://pieps.org/cyrus/dist/2.1.19/cyrus-sasl-2.1.19-checkpw.c.patch > >Would You please apply this or similar patch to cyrus sasl debian package? There is a partially implemented, and undocumented 'pwcheck_method: auxprop-hashed' feature in the code. I believe it supports both sql and sasldb auxprop backends but not ldapdb. See git commit 62ce0768aa375cf0d16102570970b232dcb1cb28
This feature was disabled in the latest version because it is undocumented and apparently insecure. Please follow along about crypt() support on the upstream bug.
