Re: Changing email password storage format
On Wed, 05 Sep 2012 18:02:40 +0200, Sebastian wrote:
(...)
> I want to upgrade the password storage from crypt to SSHA512, which
> makes hashes harder to crack in case the hashes get stolen.
> bcrypt/scrypt would be even better, although Dovecot does not seem to
> support these natively (am I right here?).
According to this recent post I think you're right:
http://www.dovecot.org/list/dovecot/2012-July/067156.html
> Anyway:
> In order to convert the hashes, I need the cleartext passwords. So one
> idea would be to tell Dovecot to spit out the cleartext password when a
> user authenticates via POP or IMAP. Do you know of any such
> functionality?
(...)
Maybe this is worth reading:
http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes
Greetings,
--
Camaleón
Reply to: