|
From: Christian B. <pos...@cb...> - 2016-10-20 20:17:04
|
Hello,
Am Freitag, 14. Oktober 2016, 12:17:37 CEST schrieb Aaron Lindsay:
> I'm attaching a patch which should allow users to change their
> $CONF['encrypt'] setting and still allow passwords in the database
> encrypted with an older method to be used to login. Note that this is
> only for 'dovecot:' methods, and may require some manual database
> updates (i.e. if you used the 'md5crypt' method previously, you'll
> have to prefix all the existing password entries in the database with
> '{MD5-CRYPT}', since it only adds the '$1' prefix).
>
> With those caveats out of the way, this seems to have allowed me to
> update my password configuration (making the password encryption
> stronger) without requiring all postfixadmin admins to immediately
> recreate new passwords. Please let me know if you see any issues with
> this patch - I'd love your feedback, and would like to see this
> upstream if possible.
Thanks for the patch!
It looks good, it works - and I just commited it to SVN r1875 ;-)
Regards,
Christian Boltz
--
Will ich mich demnaechst mal ranmachen,
allerdings momentan zuviel extrem unwichtige Sachen zu tun.
[Marcel Schmedes in suse-linux] ^^
|
