• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.

Question Mail migration - crypt'ed passwords

Hey

I've got an old mail server that I have to migrate to Plesk. The mass of mail accounts existing does not allow me to reset every users password since the after-work (helping users to reset there passwords or re-configuring there mail clients) will take me way too much time. Also, as a provider I feel responsible for having my clients not to care too much about the up-coming system change.

Old mail server (ISPConfig multi server setup):
Here, passwords are stored using crypt(). I do have the crypted password and the salt used.

Plesk (17.5.3#55 - impossible to upgrade as multi server setup is not available in the latest release...):
Plesk seems to store mail account passwords using AES128 encryption, correct? At least that's what I would assume based on the test record that I get by running
`select mail_name,password from mail inner join accounts on accounts.id=mail.account_id;` (as suggest for example here: Where are the passwords for the mailaccounts stored? (Postfix))
in `plesk db`.
Now, taking a closer look at the `accounts` table I can see two different types:
  • crypt
  • sym
Is the AES128-encrypted mail account password is stored with type `sym`? What does "sym" stand for?

Now, based on above findings I tried updating the relevant record for the mail account like so:
`update accounts set type = 'crypt', password = <salted hash> where id = <id>;`

However, the mail account, when trying to login in to webmail still allows the 'old' (AES128 encrypted) password only.
Does this table not hold the mail account's password? Or might there be another reason why plesk still uses the initially set password in this case?

Note: No, I don't know whether this approach could be working at all, however I'm still wondering where Plesk stores the mail password in that case anyway.

Or, in other words, is there any possibility to define the encryption method for mail passwords?
 
Last edited:
Hey Christoph!

It's a long time ago you've posted this, but I'm very curious if you did find a way to import the encrypted passwords in Plesk.
At the moment I'm facing a similar situation as you described.

Thank you in advance!
 
Back
Top