From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by nuthatch.gentoo.org with esmtp (Exim 4.50)
	id 1ETT1g-0004BH-1P
	for garchives@archives.gentoo.org; Sat, 22 Oct 2005 23:43:48 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.13.5/8.13.5) with SMTP id j9MNeSpN029633;
	Sat, 22 Oct 2005 23:40:28 GMT
Received: from gimli.home.gaima.co.uk (cpc2-hudd1-6-0-cust92.hudd.cable.ntl.com [81.111.209.92])
	by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id j9MNZRXa022086
	for <gentoo-user@lists.gentoo.org>; Sat, 22 Oct 2005 23:35:28 GMT
Received: (qmail 32447 invoked from network); 23 Oct 2005 00:38:26 +0100
Received: from localhost (127.0.0.1)
  by localhost with SMTP; 23 Oct 2005 00:38:26 +0100
From: Mike Williams <mike@gaima.co.uk>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] [blocks B     ] <mail-mta/qmail-1.03-r16 (is blocking net-mail/cmd5checkpw-0.30)
Date: Sun, 23 Oct 2005 00:38:22 +0100
User-Agent: KMail/1.8.2
References: <20051022180429.GA15462@brankie.xs4all.nl> <200510222208.48061.mike@gaima.co.uk> <20051022231806.GC15462@brankie.xs4all.nl>
In-Reply-To: <20051022231806.GC15462@brankie.xs4all.nl>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200510230038.25797.mike@gaima.co.uk>
X-Archives-Salt: a6f7570e-a115-4a76-9851-9005c71c0ebb
X-Archives-Hash: b311e8f2948ef9f94b76bb7c986fce46

On Sunday 23 October 2005 00:18, henkg@brankie.xs4all.nl wrote:
> Still something to learn I guess. my poppasswd file is still the example
> file that came with whatever it came with. My pop accounts are
> authenticated via the regular linux logins, so for every pop user (3 at
> the moment) I have a user acount in linux.

Good good.

> What package uses this poppasswd file?

cmd5checkpw, and anything else which does CRAM MD5 authentication at a guess.
CRAM is done by sending a hash of the password over the wire, the salt is 
unique for each connection, so you need the plain text password on the server 
to check against, which are kept in poppasswd.
Secure over the wire, hideously insecure on the server.

> I tried qpkg, but that doesn't seem to exist any more?

Yeah, it got moved to another package as it's depreciated in favour of equery.

> Does the above mean I can safely enable noauthcram?

Yes.

-- 
Mike Williams
-- 
gentoo-user@gentoo.org mailing list