Re: [Exim] Hiding auth. password

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Tamas TEVESZ
Date:  
À: Jean-Noel Colin
CC: exim-users
Sujet: Re: [Exim] Hiding auth. password
On Thu, 19 Apr 2001, Jean-Noel Colin wrote:

> I am a bit worried because this requires that my NT password
> is stored in plain text in exim.conf and that any user can run
> exim -bP authenticators and find out the username/password used
>
> Is there any solution to this?


as i said previously

hide client_send = username : password

$ exim -bP authenticators

login authenticator:
driver = plaintext
public_name = LOGIN
client_send = <value not displayable>

this option came in somewhere between 3.16 and 3.22 i think

also make sure normal users can't read exim.conf directly (ie 640
root.mail or sg like that)

-- 
[-]
[Szilva] eppen szolt bx hogy szolt neked hogy szoltam neki
[bx] varja. szolok szilvanak, hogy szoltal nekem, hogy szoltam
     neki, hogy ... varj. elb*sztam