[Dovecot] Password authentication and character set

Tue Nov 18 17:32:50 EET 2008

Hi,

I've searched in the wiki and in the mailinglist archives but haven't 
found anything about password character sets within the dovecot 
authentication deamon.

My problem is that we have users with passwords containing scandinavian 
characters (äöå, umlauts) and the debug log shows that different clients 
send the password in different charsets.  The passwords are stored in a 
Mysql table, if that makes any difference.

Outlook Express with LATIN 1 (ISO-8859-1):

Nov 18 16:56:39 resilar dovecot: auth-worker(default): 
sql(fgr-1,193.64.206.190): Password mismatch
Nov 18 16:56:39 resilar dovecot: auth-worker(default): 
sql(fgr-1,193.64.206.190): MD5(<E4><E4>kk<F6>si<E4>) != 
'$1$xMPPHRdL$I0mrlPi5FMtwauSf20vjz0'

MacMail UTF8:

Nov 18 17:23:37 resilar dovecot: auth-worker(default): 
sql(fgr-1,193.64.206.190): Password mismatch
Nov 18 17:23:37 resilar dovecot: auth-worker(default): 
sql(fgr-1,193.64.206.190): MD5(ääkkösiä12) != 
'$1$xMPPHRdL$I0mrlPi5FMtwauSf20vjz0'

Is there a setting that "forces" the authentication daemon to convert 
the provided password to a specific charset before the comparison takes 
place, or how should one handle this?

dovecot -n

# 1.1.4: /etc/dovecot/dovecot.conf
log_timestamp: %Y-%m-%d %H:%M:%S
protocols: imap imaps pop3 pop3s managesieve
ssl_cert_file: /etc/ssl/certs/mail.crt
ssl_key_file: /etc/ssl/private/mail.key
ssl_cipher_list: ALL:!LOW
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/lib/dovecot/imap-login
login_executable(imap): /usr/lib/dovecot/imap-login
login_executable(pop3): /usr/lib/dovecot/pop3-login
login_executable(managesieve): /usr/lib/dovecot/managesieve-login
login_greeting: mail ready.
login_process_per_connection: no
mail_privileged_group: mail
mail_location: maildir:~/mail
mail_debug: yes
mail_executable(default): /usr/lib/dovecot/imap
mail_executable(imap): /usr/lib/dovecot/imap
mail_executable(pop3): /usr/lib/dovecot/pop3
mail_executable(managesieve): /usr/lib/dovecot/managesieve
mail_plugins(default): quota imap_quota
mail_plugins(imap): quota imap_quota
mail_plugins(pop3): quota
mail_plugins(managesieve):
mail_plugin_dir(default): /usr/lib/dovecot/modules/imap
mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3
mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve
imap_client_workarounds(default): delay-newmail outlook-idle
imap_client_workarounds(imap): delay-newmail outlook-idle
imap_client_workarounds(pop3):
imap_client_workarounds(managesieve):
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
pop3_client_workarounds(managesieve):
sieve_storage(default):
sieve_storage(imap):
sieve_storage(pop3):
sieve_storage(managesieve): ~/
sieve(default):
sieve(imap):
sieve(pop3):
sieve(managesieve): ~/.dovecot.sieve
auth default:
  mechanisms: plain login
  username_chars: 
abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_ at +
  verbose: yes
  debug: yes
  debug_passwords: yes
  worker_max_count: 50
  passdb:
    driver: sql
    args: /etc/dovecot/dovecot-sql.conf
  userdb:
    driver: prefetch
  userdb:
    driver: sql
    args: /etc/dovecot/dovecot-sql.conf
  socket:
    type: listen
    client:
      path: /var/spool/postfix/private/auth
      mode: 432
      user: postfix
      group: postfix
    master:
      path: /var/run/dovecot/auth-master
      mode: 384
      user: vmail
plugin:
  quota: maildir

Chears

Fredrik
-- 
------------------------------------------------------------------------
Fredrik Grönqvist
------------------------------------------------------------------------