On Tue, 25 Jan 2005, Norman H. Azadian wrote:
> I've set up the configuration exactly as recommended in the config file. I've
> created file /etc/exim4/passwd with entry:
>
> naz:0$1$OONCCgw2$MZK5pk7/IvV6Unv.Log8g.
>
> where the password string is a copy-and-paste from /etc/shadow.
>
> I then mimencode it:
>
> = echo -e -n 'naz\0$1$OONCCgw2$MZK5pk7/IvV6Unv.Log8g.' | mimencode
> bmF6ACQxJE9PTkNDZ3cyJE1aSzVwazcvSXZWNlVudi5Mb2c4Zy4=
>
> Then I test it with:
> auth login bmF6ACQxJE9PTkNDZ3cyJE1aSzVwazcvSXZWNlVudi5Mb2c4Zy4=
> SMTP<< auth login bmF6ACQxJE9PTkNDZ3cyJE1aSzVwazcvSXZWNlVudi5Mb2c4Zy4=
> search_open: lsearch "/etc/exim4/passwd"
> search_find: file="/etc/exim4/passwd"
> key="naz" partial=-1 affix=NULL starflags=0
> LRU list:
> :/etc/exim4/passwd
> End
> internal_search_find: file="/etc/exim4/passwd"
> type=lsearch key="naz"
> file lookup required for naz
> in /etc/exim4/passwd
> lookup yielded: $1$OONCCgw2$MZK5pk7/IvV6Unv.Log8g.
> crypteq: using crypt()
> subject=$1$OONCCgw2$qzO3TCnj30oEtdk9t4Zn/0
> crypted=$1$OONCCgw2$MZK5pk7/IvV6Unv.Log8g.
> login_server authenticator:
> $1 = naz
> $2 = $1$OONCCgw2$MZK5pk7/IvV6Unv.Log8g.
> expanded string: 0
> SMTP>> 535 Incorrect authentication data
> 535 Incorrect authentication data
>
> Can anybody clue me in as to what I'm doing wrong here?
Several things.
* Did you really post a crypted password to a public list for people to
run crack with?
* You aren't using the correct AUTH LOGIN protocol. What you are doing
appears to be a bastardized AUTH PLAIN. You will not be able to use this
authenticator with other software. See sections 34.2 and 34.3 of the spe
for working examples.
* You can't use the crypted password to authenticate, you must use the
plaintext password base64 encoded.
Tony.
--
<fanf@???> <dot@???>
http://dotat.at/ ${sg{\N${sg{\
N\}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}\
\N}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}
