[exim] Re: Blowfish auth

Top Page
Delete this message
Reply to this message
Author: Mike Tubby G8TIC
Date:  
To: exim-users
Subject: [exim] Re: Blowfish auth
As Kai says... everything is possible with Exim+PERL.

I store user authentication details in salted SHA256 in a MySQL backend
and have Exim call a PERL shim that performs a web-services call to
localhost:8080 where Nginx runs my authenticator (written in PHP).  The
authenticator receives a POST with IP address/username/password in JSON
and returns a HTTP 204 (Success, No Data) or HTTP 403 (Forbidden).  The
PERL running in Exim then translates this to accept/reject based on the
204 or 403.

Mike

On 16/05/2024 11:58, Kai Bojens via Exim-users wrote:
> Am 16.05.24 um 11:30 schrieb Gandalf Corvotempesta via Exim-users:
>
>> is possible to use blowfish password scheme in exim?
>
> Everything is possible with Exim+Perl:
>
> https://www.exim.org/exim-html-current/doc/html/spec_html/ch-embedded_perl.html
>
>



--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/