Cyrus SASL with MySQL Encrypted Passwords

Updates:
20061204 - Confirmed to work on
[url=javascript:;]Cyrus[/url]

[url=javascript:;]SASL[/url]
2.1.21 with Cyrus IMAPD 2.3.1 on
           FreeBSD 6.1-RELEASE on i386 and amd64 platform.
20061203 - After forgetting to do some redirecting, the site has been down
           without my knowledge.  The redirect to viperstrike.com to this
           location, readaccess.com, should be working.  My apologies.
20060125 - Confirmed to work on Cyrus SASL 2.1.21 with Cyrus IMAPD 2.3.1 on
           FreeBSD 6.0-RELEASE on amd64 platform.  Currently setting it up on
           i386 platform.  Once finished, I will update site.
20051214 - Due to many requests, I have created a
[url=javascript:;]Linux[/url]
version of the patch.
           The link to the patch is in the "Install this Patch" section.
           NOTE that the Linux version does not read blowfish encrypted
           passwords.  Also note, I have not extensively tested this with
           Linux, but it appears to work.
20050113 - Thanks to A. Oberritter, I fixed a stupid memory leak in the patch.
           Can't believe it has been in the patch for this long.
20041009 - Confirmed to work on Cyrus SASL 2.1.19 with Cyrus IMAPD 2.2.8 on FreeBSD 4.9 and 4.10
20041008 - Patch has been updated to include checking blowfish encrypted passwords.
20040415 - updated to 2.1.17 on FreeBSD-4.9.  If you are looking for the old version, it's
HERE
!!
20040415 - This should work w/ SASL 2.1.18 as well
If you had to make any other changes or got this to work on any other platform/OS, please let me know so I can share it here.
--------------------------------------------------------------------------------
Purpose:
In this document, I will detail how I altered and installed Cyrus SASL to authenticate by using encrypted passwords from
[url=javascript:;]MySQL[/url]
. I only needed a FreeBSD machine to have this capability, so I have no clue if this will work on other OS's. The passwords are encrypted in MySQL using the following 2 syntax:
ENCRYPT("passwordhere","$1$mFeTJdKh$")
ENCRYPT("passwordhere")
The first one encrypts in MD5 format, the default format that FreeBSD 4.9 uses to store it's password in the /etc/master.passwd file. The second argument in the MD5 format is the seed. It must be in the format of "$1$xxxxxxxx$". The second one is in DES format, The old default format that FreeBSD used. Both formats are valid in FreeBSD 4.9. The reason I mention this is to show how easy it is to seed MySQL with users who already have accounts on your FreeBSD system. Just copy the encrypted password into MySQL and you don't have to worry about users needing to reset their passwords to update MySQL. The patch I have provided can deal with both formats. It now can deal with blowfish (blf) format.

标签：

版权申明：本站文章部分自网络，如有侵权，请联系：west999com@outlook.com
特别注意：本站所有转载文章言论不代表本站观点，本站所提供的摄影照片，插画，设计作品，如需使用，请与原作者联系，版权归原作者所有