Goetz Babin-Ebell wrote:
The problem is that cram-md5 and digest-md5 need direct access to the pass phrase in plain text. AFAIK LDAP doesn't support this. You have to use TLS if you want to transmit the pass phrase securely...
Technically not true, you need the password hashed with the username and realm. But cyrus-sasl dropped support for storing the hashes a long time ago and has never brought it back.
I can't comment on the LDAP plugin's ability to store/retreive plain text passwords, as I've never used it.
-- Carson ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
