[jdev] Coming back from mod_auth_crypt
Lucas Nussbaum
lucas at lucas-nussbaum.net
Mon Jul 26 14:17:35 CDT 2004
Hi,
We consider moving to jabberd 2 in the near future. Problem : we are
using mod_auth_crypt for authentification, so we don't have plaintext
passwords.
We thought of two roadmaps :
(1) Enable mod_auth_(digest|plain) and ask every user to change his
password. This sucks, because some clients (Gossip) don't allow the user
to change his password.
(2) Enable mod_auth_(digest|plain), and hack mod_auth_crypt so the
plaintext password gets added to the XDB. Later, it can be used by
mod_auth_(digest|plain).
Here is a patch :
http://www.lucas-nussbaum.net/jabber-1.4.3+killcrypt.diff
It passed all my regression tests (that is, it is running for more than
5 minutes on our server).
Have fun.
--
| Lucas Nussbaum
| lucas at lucas-nussbaum.net lnu at gnu.org GPG: 1024D/023B3F4F |
| jabber: lucas at linux.ensimag.fr http://www.lucas-nussbaum.net |
| fingerprint: 075D 010B 80C3 AC68 BD4F B328 DA19 6237 023B 3F4F |
More information about the JDev
mailing list