clawsmail-password-decrypter
clawsmail-password-decrypter copied to clipboard
b4n
Error resolving password for account "Account: 1"
Hi,
Thank you for clawsmail-password-decrypter
My environment is:
Python 2.7.11
python2-crypto 2.6.1-3
$ uname -a Linux localhost.localdomain 4.7.4-1.1-MANJARO #1 SMP PREEMPT Wed Sep 21 00:42:17 UTC 2016 x86_64 GNU/Linux
When I run $python2 clawsmail-passdecrypt.py ~/.claws-mail/accountrc
I get
Error resolving password for account "Account: 1": No option 'password' in section: 'Account: 1' Error resolving password for account "Account: 2": No option 'password' in section: 'Account: 2' ...
Your app was worked for years. Not sure why the hiccup now.
Best wishes
I get
Error resolving password for account "Account: 1": No option 'password' in section: 'Account: 1' Error resolving password for account "Account: 2": No option 'password' in section: 'Account: 2' ...
Your app was worked for years. Not sure why the hiccup now.
Hum… which version of Claws Mail are you using? The last version moved passwords to ~/.claws-mail/passwordstorerc, and possibly changed the format (see its news). There is no support for that new file currently in clawsmail-password-decrypter, so it might require additional code depending on that new file layout. I could work on that if it's reasonably simple and if I have a sample file (ideally with dummy passwords).
But also note that this latest versions introduced some real cryptography and a Master Password, and that if you use that it won't be possible to recover the account passwords without that Master Password (short of brute-forcing a good cryptographic algorithm).
Hi b4n Claws is claws-mail-3.14.0 $ ls ~/.claws-mail/passwordstorerc /home/user/.claws-mail/passwordstorerc
I've never noticed the Master Password feature in claws. Perhaps I would if I started with a fresh installation and no existing config.
I created a new account 7 and replaced codes with xxx yyy etc. This file looks like this:
[account:1] recv !xxxxxxx send !yyyyyyyy
[account:2] recv !xxxxxxx
[account:3] recv !xxxxxxx
[account:4] recv !xxxxxxx
[account:5] send !yyyyyyyyy
[account:6] recv !xxxxxxx
[account:7] recv {AES-256-CBC,50000}pYSxbn3TyL2GTaIJrEHunNd+HEWplHPBeSTccWy4zCJi/YPnHTamqOZLnPcgnbNBw2+8ENT8BpKZoV96m12CdOOihCOIx9FcmNOooh+Ps4EEqcnRyjLHh92Y+EO16tSxSwCR6yKlfQTZYvKvwjqaJKGZT2XdmxaNJXXJMJq6zsk=
@nobicycle: it seems claws-mail doesn't re-encrypt the passwords from the accountrc file on upgrade, so you can look up any password that starts with an exclamation mark:
./clawsmail-passdecrypt.py '!xxxxxxx'
Claws-mail dev here. You are right, we do not reencrypt passwords when upgrading, since there would be no point - a password encrypted with the new method would be just as insecure as encrypted in the old way, because it would be encrypted using a known master passphrase ("passkey0").
So unless you use a custom master passphrase, you are effectively only obfuscating the stored passwords, just like with the old method.
By the way, we have recently added "Show password" checkboxes next to password fields e.g. in account preferences, so it should be easy to peek at your stored passwords. :) It is not yet included in any released version, only in git.
Thanks for clarification, @ticho! Hope this feature is relased soon.