password logging fixes

Author: jaredmauch

Mailman/SecurityManager.py

@@ -139,6 +139,9 @@ def Authenticate(self, authcontexts, response, user=None):
         if not response:
             # Don't authenticate null passwords
             return mm_cfg.UnAuthorized
+        # Log the type and encoding of the response
+        mailman_log('debug', 'Auth response type: %s, encoding: %s', 
+                    type(response), getattr(response, 'encoding', 'N/A'))
         # python3
         response = response.encode('UTF-8')
         for ac in authcontexts:

Mailman/Utils.py

@@ -483,7 +483,11 @@ def check_global_password(response, siteadmin=True):
     challenge = get_global_password(siteadmin)
     if challenge is None:
         return None
-    return challenge == sha_new(response).hexdigest()
+    # Log the hashes for debugging
+    computed_hash = sha_new(response).hexdigest()
+    mailman_log('debug', 'Password check - stored hash: %s, computed hash: %s', 
+                challenge, computed_hash)
+    return challenge == computed_hash
 
 
 _ampre = re.compile('&((?:#[0-9]+|[a-z]+);)', re.IGNORECASE)