Navigation

    Kopano
    • Register
    • Login
    • Search
    • Categories
    • Get Official Kopano Support
    • Recent
    Statement regarding the closure of the Kopano community forum and the end of the community edition

    Kopano password encryption key

    Kopano Groupware Core
    3
    6
    340
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Clickux
      Clickux last edited by

      Hi all,

      do you know where can be found the key and IV used to encrypt user’s passwords in the Kopano DB ?

      thx in advance for your answers.

      brgds
      Clickux

      1 Reply Last reply Reply Quote 0
      • jengelh
        jengelh Banned last edited by jengelh

        There is no key and no (explicit) IV, because the common practice is that passwords are not symmetrically encrypted, but hashed.

        1 Reply Last reply Reply Quote 0
        • Clickux
          Clickux last edited by

          Thank you for your answer jengelh.

          The idea here is to authenticate using DB backend
          So then how can I compare the entered password with the hashed value in the DB ? Is there a way to to that ?

          fbartels 1 Reply Last reply Reply Quote 0
          • fbartels
            fbartels Kopano @Clickux last edited by

            Hi @Clickux,

            @Clickux said in Kopano password encryption key:

            The idea here is to authenticate using DB backend

            if you want to share passwords between system the better way would be to use the ldap backend. this is also more powerful in the sense that it can for example also manage contacts.

            Regards Felix

            Resources:
            https://kopano.com/blog/how-to-get-kopano/
            https://documentation.kopano.io/
            https://kb.kopano.io/

            Support overview:
            https://kopano.com/support/

            1 Reply Last reply Reply Quote 0
            • Clickux
              Clickux last edited by

              Hi Felix,

              thanks for your feedback.
              I’ll do it this way then.

              brgds

              1 Reply Last reply Reply Quote 0
              • jengelh
                jengelh Banned last edited by

                see DBBase.cpp:DBPlugin::CreateMD5Hash. There is however no guarantee that the method remains the same forever. pam_mapi (external project) has a proper implementation that uses server logon for validation.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post