Re: Moving away from plain-text passwords in the server-side passwd file

From: David Glasser <glasser_at_davidglasser.net>
Date: Thu, 22 May 2008 09:09:02 -0700

On Wed, May 21, 2008 at 10:20 AM, Greg Hudson <ghudson_at_mit.edu> wrote:
> On Wed, 2008-05-21 at 12:40 -0400, Mark Phippard wrote:
>> If the server does not know the plaintext password
>> for a user then you cannot use CRAM-MD5 or DIGEST-MD5 auth mechanisms.
>
> With DIGEST-MD5 it's possible for the server to know only an
> intermediate hash of the password. Unfortunately, I don't think Cyrus
> SASL supports that. (Not sure, though.)

Cyrus SASL does support DIGEST-MD5; I forget if it supports only
knowing the hash, though.

--dave

-- 
David Glasser | glasser@davidglasser.net | http://www.davidglasser.net/
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: dev-help_at_subversion.tigris.org

Received on 2008-05-22 18:09:16 CEST

This message: [ Message body ]
Next message: C. Michael Pilato: "Re: Google Summer of Code project: sparse checkouts deselection interface."
Previous message: Rui, Guo: "Re: Google Summer of Code project: sparse checkouts deselection interface."
In reply to: Greg Hudson: "Re: Moving away from plain-text passwords in the server-side passwd file"
Next in thread: Mark Phippard: "Re: Moving away from plain-text passwords in the server-side passwd file"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]