ejabberd icon indicating copy to clipboard operation
ejabberd copied to clipboard
verified publisher icon processone

Make Scram password storage the default in default config files

Open mremond opened this issue 2 years ago • 3 comments

All modern clients should now support SCRAM, we can consider, SCRAM password storage should be added to the default config file.

mremond avatar Oct 24 '23 08:10 mremond

Modern clients like Monal support SCRAM only if SASL2 is supported, will this be added too?

licaon-kter avatar Oct 24 '23 08:10 licaon-kter

You can actually offer SASL PLAIN login with scram-hashed password storage. I think the reason we sticked to plain-text passwords was just that SIP and (traditional) TURN authentication requires those.

weiss avatar Oct 24 '23 08:10 weiss

@aamelnikov has always said me that original SCRAM RFC is for SIP too.

Neustradamus avatar Oct 24 '23 11:10 Neustradamus