Bug 2091035

Summary: [RFE] Set dnpass with encrypted password
Product: Red Hat Enterprise Linux 8 Reporter: Ganesh <gnaik>
Component: dovecotAssignee: Michal Hlavinka <mhlavink>
Status: CLOSED NOTABUG QA Contact: CS System Management SST QE <rhel-cs-system-management-subsystem-qe>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 8.8Keywords: FutureFeature
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-09-13 10:43:04 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ganesh 2022-05-27 11:59:18 UTC 
Description of problem:

- Set dnpass with encrypted password.
- Currently only plain password is accepted.

Version-Release number of selected component (if applicable):

- dovecot-2.3.16-2.el8

How reproducible:

- Not applicable

Additional info:

With reference to https://access.redhat.com/solutions/6761851

Refer 4.7 4.7 Dovecot LDAP Authentication configuration. 
(Add following configurations in /etc/dovecot/dovecot-ldap.conf.ext file.)

..
dnpass = redhat
..

(Need a provision to replace plain text password with encrypted password).
Comment 2 Michal Hlavinka 2022-07-26 19:46:42 UTC 
I don't understand this request. Password can be encrypted (hash+salt) for example in /etc/shaddow file as it is checked in a way that hash of the salt+password must give same result. Dovecot is not the one checking value of dnspass,  different service is. So dovecot does need the password in plaintext, so it can "enter" it to the service doing the verification.
Comment 6 Michal Hlavinka 2023-09-13 10:43:04 UTC 
Closing stale report as notabug as per comment #2