On Wed, Aug 01, 2001 at 08:41:17PM +0200, Simon Frohn wrote:
> Hi,
>
> normal (user / pass) authentification works great but
> when I try to use eudora with the apop-option set
> i get:
>
> -ERR authorization failed..
>
> Eudora sends the following command:
>
> APOP frohn 4ada32e719513d69040a9079ab47a6f8......
>
> where ... is the rest of the md5-encrypted string.
>
> Btw
>
> APOP frohn <CLEARTEXTPW>
>
> is working too!
>
>
> How do I set up qmail-ldap to support apop?
>
You have to patch checkpassword.c and auth_pop.c
qmail-ldap does not suport APOP because this is a stupid protocol
requiring to have the password stored in cleartext on the server.
It is not big deal to support it if you really like. First, in auth_pop.c
auth_init() around line 72. After reading login and passwd (cleartext or
md5hash) is a third field with the timestamp for the APOP algorithm.
Now in checkpassword.c you have to modifiy the cmp_password function to
support the APOP algorithm.
For more info see qmail-popup(8) and rfc 1939.
--
:wq Claudio
tail -22 QLDAPINSTALL
