Re: [Exim] SMTP_AUTH passwords in mainlog

Pàgina inicial
Delete this message
Reply to this message
Autor: Nico Erfurth
Data:  
A: Todd Jagger
CC: exim-users@exim.org
Assumptes nous: [Exim] string expansion in autoreply transport
Assumpte: Re: [Exim] SMTP_AUTH passwords in mainlog
On Fri, 7 Mar 2003, Todd Jagger wrote:

> Here are my authenticators. I admit I copied and pasted these either
> from one of the configuration samples or from something here on this
> list that was said to work, with minor mod for this implementation. The
> "auth_users" file is parts of the /etc/shadow file for the users who
> need to relay. Hence my apprehension over seeing their passwords
> decrypted in the exim logs. :-)


I think you didn't copy them correctly.

> (this is probably going to wrap funky)
>
> plain:
>    driver = plaintext
>    public_name = PLAIN
>    server_condition = "${if and \
> {{!eq{$2}{}}{!eq{$3}{}}{crypteq{$3}{${extract{1}{:}{${lookup{$2} \
> lsearch{/var/exim/auth_users}{$value}{*:*}}}}}}}{1}{0}}"
> server_set_id = $1

                  ^^ Should set no useable ID, use $2 instead

>
> login:
>    driver = plaintext
>    public_name = LOGIN
>    server_prompts = "Username:: : Password::"
>    server_condition = "${if and \
> {{!eq{$1}{}}{!eq{$2}{}}{crypteq{$2}{${extract{1}{:}{${lookup{$1} \
> lsearch{/var/exim/auth_users}{$value}{*:*}}}}}}}{1}{0}}"
> server_set_id = $2

                  ^^ This is the password, use $1 instead



Nico