starred/ViMbAdmin-opensolutions
1
0
Fork 0
mirror of https://github.com/opensolutions/ViMbAdmin.git synced 2026-04-26 00:36:00 +03:00
Code Issues 16 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #5] Switch to using the built-in hash() function for more secure algorithms for password hashing #6

New issue
Closed
opened 2026-02-26 09:35:04 +03:00 by kerem · 2 comments
kerem commented 2026-02-26 09:35:04 +03:00
Owner
Copy link

Originally created by @basilgohar on GitHub (Oct 1, 2011).
Original GitHub issue: https://github.com/opensolutions/ViMbAdmin/issues/5

Dovecot supports more hashing algorithms than currently supported by ViMbAdmin's Mailbox class. Switching over to the hash() function that comes with PHP will enable a large variety of hashing algorithms, notably more secure ones such as sha256 and, theoretically, even better ones in the future as they become available.

I am currently using sha256 as the hashing algorithm for the enhanced security that it offers, and this was the impetus in proposing this enhancement request. I am willing to contribute a patch if this is deemed meritable.

Originally created by @basilgohar on GitHub (Oct 1, 2011). Original GitHub issue: https://github.com/opensolutions/ViMbAdmin/issues/5 Dovecot supports more hashing algorithms than currently supported by ViMbAdmin's Mailbox class. Switching over to the hash() function that comes with PHP will enable a large variety of hashing algorithms, notably more secure ones such as sha256 and, theoretically, even better ones in the future as they become available. I am currently using sha256 as the hashing algorithm for the enhanced security that it offers, and this was the impetus in proposing this enhancement request. I am willing to contribute a patch if this is deemed meritable.
kerem 2026-02-26 09:35:04 +03:00
  • closed this issue
  • added the
    feature
         label
kerem commented 2026-02-26 09:35:05 +03:00
Author
Owner
Copy link

@basilgohar commented on GitHub (Oct 1, 2011):

PHP documentation for the hash() function:
http://www.php.net/manual/en/function.hash.php

Dovecot documentation for hashing algorithm options:
http://wiki.dovecot.org/Authentication/PasswordSchemes

(Up to salted SHA512 is supported in version 2)

This should be applicable to more than just Dovecot, of course. :)

<!-- gh-comment-id:2254990 --> @basilgohar commented on GitHub (Oct 1, 2011): PHP documentation for the hash() function: http://www.php.net/manual/en/function.hash.php Dovecot documentation for hashing algorithm options: http://wiki.dovecot.org/Authentication/PasswordSchemes (Up to salted SHA512 is supported in version 2) This should be applicable to more than just Dovecot, of course. :)
kerem commented 2026-02-26 09:35:05 +03:00
Author
Owner
Copy link

@barryo commented on GitHub (Feb 15, 2014):

Dovecot hashing is now supported in V3.

<!-- gh-comment-id:35151409 --> @barryo commented on GitHub (Feb 15, 2014): Dovecot hashing is now supported in V3.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/composer/smarty/smarty-4.3.1
v2
3.4.1
3.4.0
3.3.0
3.2.1
3.2.0
3.1.1
3.1.0
3.0.15
3.0.14
3.0.13
3.0.12
3.0.11
2.2.4
3.0.10
3.0.9
3.0.8
3.0.7
3.0.6
3.0.5
3.0.4
3.0.3
3.0.2
3.0.1
3.0.0
2.2.3
2.2.2
2.2.1
2.2.0
2.1.0
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.1
2.0.0
0.3.4
0.3.3
0.3.2
0.3.1
0.3
Labels
Clear labels   
bug

   
feature

   
feature

   
improvement

   
improvement

   
pull-request

Mirrored from GitHub Pull Request

No labels
bug
feature
feature
improvement
improvement
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/ViMbAdmin-opensolutions#6
No description provided.