My original question - Has anyone been able to get the apop
authentication of qpopper to work for DU?
>From Stephane Bortzmeyer:
There is a bug in md5.h (the people who think a long int is always 32
bits). Change the UNIT4 for:
/* UINT4 defines a four byte word */
typedef unsigned int UINT4;
>From Hans Ranke:
If I understand, then you want to add a user to the APOP database
and still want to authenticate with USER/PASS ? (If that is wrong,
how do you test an APOP account using telnet, esp. how do you create
the MD5 digest string?)
RFC1725 disallows the concurrent use of the two authentification methods
for the same account, therefore qpopper won't allow the USER/PASS
authentifications for users in the APOP database.
However, we patched qpopper to allow this, the diff is appended below.
*** pop_user.c.orig Fri May 24 20:26:47 1996
--- pop_user.c Thu Oct 24 10:13:43 1996
***************
*** 71,76 ****
--- 71,80 ----
"You must use APOP authentication to connect to this
server"));
# endif
+ # if 0
+ /* At regent, we allow users to connevt via APOP or via
+ * USER/PASS alternatively. 24.10.96, har
+ */
# ifdef APOP
/* If this call fails then the database is not accessable
(doesn't
***************
*** 116,121 ****
--- 120,126 ----
}
}
#endif /* APOP */
+ #endif /* 0 -- regent */
/* Tell the user that the password is required */
return (pop_msg(p,POP_SUCCESS,"Password required for
%s.",p->user));
I had done as Stephane Bortzmeyer suggested. I didn't really want to
allow two authentication methods as Hans Ranke wondered, but the above
is interesting so I've included it. Sorry that my first question was
practically unintelligible. I meant that telneting into the POP port
returned the error "-ERR You must use APOP to connect to this server".
The client returned the authentication errors.
The real problem was my thick-headedness (that's never happened before).
It helps alot to be sure you've configured the client to use APOP.
Sorry!
Received on Wed Jan 15 1997 - 22:22:14 NZDT