Re: [SM-USERS] The best IMAP4 server for SM 1.4.x

[R. Welz]

R. Welz wrote:
>
> John Madden wrote:
>>> Is there a way to get mySQL/Postgres over sasl with hashed passwords or
>>> ssl? I
>>> hate
>>> clear-text passwords floating around the network.
>>
>> PostgreSQL supports SSL natively.  Storing passwords in plain text is
>> still a bad
>> idea.  Storing them in a database is probably the not-great idea that
>> needs to be
>> worked on.  Radius is better, but why not LDAP?
>
> Yes, Postgres supports SSL but cyrus and postfix insist to give the
> cleartext password through sasl which builds the query string (the SELCT)
> with the cleartext password. Do someone know if it is possible to wrap
> sssl around that? Is stunnel the mean of choice here?

To answer myself, for that the password still has to be stored clear text
in postgres. One could tunnel to a postgres socket at localhost but this
still remains funny to me.

I nearly know enough about certificate policy and certification practices
to build my own CA, but I don't know much about the SSL tools. This will
be the next subject to study and maybe in 6 weeks I speak SSL like a
native speaker.

Until then I stick with Radius.

Greetings,
Robert
-- 
http://www.fixe-post.de



-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642
--
squirrelmail-users mailing list
Posting Guidelines: 
http://www.squirrelmail.org/wiki/MailingListPostingGuidelines
List Address: squirrelmail-users@lists.sourceforge.net
List Archives: 
http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user
List Archives:  http://sourceforge.net/mailarchive/forum.php?forum_id)95
List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users