Re: [courier-users] MD5 passwords - Mark Bucciarelli - net.sourceforge.lists.courier-users

8 messages in net.sourceforge.lists.courier-usersRe: [courier-users] MD5 passwords

	Permalink for this message Paste this link in email or IM:
	Permalink for this thread Paste this link in email or IM:
	Atom feed for this thread Paste this URL into your reader:

Subject:	Re: [courier-users] MD5 passwords	Actions...
From:	Mark Bucciarelli (ma...@gaiahost.coop)
Date:	Jan 29, 2006 9:24:40 am
List:	net.sourceforge.lists.courier-users

On Fri, Jan 27, 2006 at 06:22:33PM -0500, Sam Varshavchik wrote:

Mark Bucciarelli writes:

I'm having trouble getting the mysql authdaemond module to work with MD5 password hashes.

After "authtest myuser mypass", the log says:

authdaemond: supplied password 'mypass' does not match encrypted password ' {MD5}a029d0df84eb5549c641e04a9ef389e5

You need to use base64-encoding, not hex-encoding. Something like:

$ perl -e 'use Digest::MD5 qw(md5_base64); print "{MD5}" . md5_base64("mypass") . "\n";' {MD5}oCnQ34TrVUnGQeBKnvOJ5Q

I see.

Bummer. PHP's md5() uses hex-encoding. I wanted to auth against a Drupal user db.

What do think about the following proposed mod?

{MD5-16} - use base 16 encoding {MD5-randomstring} - use base 64 {MD5} - use base 64

I suppose you could also do {MD5-32} for completeness.

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets
	Permalink to these results Paste this link in email or IM:
	Atom feed for tracking future search results Paste this URL into your reader: