[Exim] eq{} vs crypteq{}

Top Page
Delete this message
Reply to this message
Author: Tamas TEVESZ
Date:  
To: exim-users
Subject: [Exim] eq{} vs crypteq{}
hi,

i'm setting up smtp auth that takes user/pwd pairs from a flat file
(done that before with sql lookups, so generally i'm pretty fine with
authenticators - which i can't say for string expansion as well).

after much struggling i came up with a working cfg where the password
db is constructed of "username:plaintextpassword" pairs, and the
server_condition looks as:

${if eq{$3}{${lookup{$2}lsearch{/etc/exim/authtab}{$value}fail}}{1}{0}}

(the authenticator uses the plaintext driver).

so far so good, it authenticates fine and lets me do my stuff.

now, for some added obscurity i decided to crypt the passwords. i used
the "htpasswd" program that comes with apache to generate such a
password file:

$ htpasswd -bcd authtab vida ginzeng
which resulted in an authtab file as:
vida:p1tMAeZ.nHWNU

sure looks as crypt(3). to me, at least.

now i changed the abovementioned condition to be "crypteq" instead of
"eq", and... authentication failed. (nothing else has been vchanged,
just "eq" to "crypteq", and the password went crypted).

is there anything i'm not aware of ? does one have to use crypteq
differently than eq (i dont think... not of what spec says, at
least)..

any ideas ?

thanks,

--
[-]