Re: [courier-users] Only 8 characters of the password required - Lisa Muir - net.sourceforge.lists.courier-users

5 messages in net.sourceforge.lists.courier-usersRe: [courier-users] Only 8 characters...

From	Sent On	Attachments
Andreas Grabner	Sep 26, 2007 9:03 am
Lisa Muir	Sep 26, 2007 9:30 am
Andreas Grabner	Sep 26, 2007 9:59 am
Johnny C. Lam	Sep 26, 2007 11:09 am
Andreas Grabner	Sep 27, 2007 1:18 am

Subject:	Re: [courier-users] Only 8 characters of the password required
From:	Lisa Muir (34.2...@gmail.com)
Date:	Sep 26, 2007 9:30:49 am
List:	net.sourceforge.lists.courier-users

On 9/26/07, Andreas Grabner <andr...@vianova.cc> wrote:

Hello,

I have just figured out that only the first 8 characters of passwords are significant and the rest is irrelevant. Have i missed some configuration? I think this is a security issue.

In my experience, this would indicate that you're encrpting passwords with the CRYPT function, try using SHA or MD5 instead to avoid the 8 character limitation, but bear in mind that you loose a certain amount of system portability with your passwords which may or may not be an issue.

HTH,

Lisa.

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets