Vpopmail stores the passwords in clear text (in addition to the encrypted passwd in the "vpasswd" files) because of the configure parameter "--enable-clear-passwd=y" in the ebuild. Is there a special reason for this? Else I would suggest to set this to no by default, for security reasons. Reproducible: Always Steps to Reproduce: 1. 2. 3.
As a sysadmin that uses vpopmail, I'd like to point out that for the most part, if your system has been hacked to the point that somebody gets to the cleartext password, you have much larger problems. Also, given that most IMAP implementations send passwords without any encryption at all, let alone SSL, storing a secured copy of the cleartext is actually a boon for the administrator. Any qaulms as marking this 'WONTFIX' ?
I would personally prefer to see it become optional so that we may please (all|most|some|a few) of our users security concerns.
anyone object to: if [ -n "$(use crypt)" ] ; then myconf="${myconf} --enable-clear-passwd=n" else myconf="${myconf} --enable-clear-passwd=y" fi
i'd object ... how about a local USE flag ... IUSE="clearpasswd" ... that way the user knows exactly what they're getting ...
I agree with vapier. A seperate USE flag would be best.
Added support for local use flag "clearpasswd" vpopmail-5.2.1-r6 / use.local.desc Note: This changes the default behavior to now not store cleartext by default.
