История изменений
Исправление leg0las, (текущая версия) :
Non-plaintext authentication mechanisms
See Authentication/Mechanisms for explanation of auth mechanisms. Most installations use only plaintext mechanisms, so you can skip this section unless you know you want to use them.
The problem with non-plaintext auth mechanisms is that the password must be stored either in plaintext, or using a mechanism-specific scheme that's incompatible with all other non-plaintext mechanisms. In addition, the mechanism-specific schemes often offer very little protection.
For example if you're going to use CRAM-MD5 authentication, the password needs to be stored in either PLAIN or CRAM-MD5 scheme. If you want to allow both CRAM-MD5 and DIGEST-MD5, the password must be stored in plaintext.
In future it's possible that Dovecot could support multiple passwords in different schemes for a single user.
LANMAN: DES-based encryption. Used sometimes with NTLM mechanism.
NTLM: MD4 sum of the password stored in hex. Used with NTLM mechanism.
RPA: Used with RPA mechanism.
CRAM-MD5: Used with CRAM-MD5 mechanism.
DIGEST-MD5: Used with DIGEST-MD5 mechanism. The username is included in the hash, so it's not possible to use the hash for different usernames.
SCRAM-SHA-1: Used with SCRAM-SHA-1 mechanism. (v2.2+)
Читал. Использую cram-md5. Или я должен был увидеть какую-то другую секцию?
Исходная версия leg0las, :
Non-plaintext authentication mechanisms
See Authentication/Mechanisms for explanation of auth mechanisms. Most installations use only plaintext mechanisms, so you can skip this section unless you know you want to use them.
The problem with non-plaintext auth mechanisms is that the password must be stored either in plaintext, or using a mechanism-specific scheme that's incompatible with all other non-plaintext mechanisms. In addition, the mechanism-specific schemes often offer very little protection.
For example if you're going to use CRAM-MD5 authentication, the password needs to be stored in either PLAIN or CRAM-MD5 scheme. If you want to allow both CRAM-MD5 and DIGEST-MD5, the password must be stored in plaintext.
In future it's possible that Dovecot could support multiple passwords in different schemes for a single user.
LANMAN: DES-based encryption. Used sometimes with NTLM mechanism. NTLM: MD4 sum of the password stored in hex. Used with NTLM mechanism.
RPA: Used with RPA mechanism.
CRAM-MD5: Used with CRAM-MD5 mechanism.
DIGEST-MD5: Used with DIGEST-MD5 mechanism. The username is included in the hash, so it's not possible to use the hash for different usernames.
SCRAM-SHA-1: Used with SCRAM-SHA-1 mechanism. (v2.2+)
Читал. Использую cram-md5. Или я должен был увидеть какую-то другую секцию?