On Wed, 15 Dec 2004 03:24:07 -0300, Eduardo M. Bragatto
[EMAIL PROTECTED] wrote:
Charles Sprickman wrote:
I don't really care if some user has his mail sniffed (if he thinks
it's confidential, he should be responsible for encrypting it, so even
when it's written to the storage system
unsubscribe
- Original Message -
From: Eduardo M. Bragatto [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, December 15, 2004 10:03 AM
Subject: Re: [vchkpw] vchkpw fails and then succeeds!
Pedro Pais wrote:
I'm not sure, but I think that the only thing that's encrypted
On Wednesday 15 December 2004 12:24 am, Eduardo M. Bragatto wrote:
Charles Sprickman wrote:
So I have to choose: using a cryptography authentication method
that's not safe or having the password being save as plain (wich is
not safe either)?
No...
You did not pointed how to
On Mon, 13 Dec 2004 21:26:10 -0500 (EST), Charles Sprickman
[EMAIL PROTECTED] wrote:
On Tue, 14 Dec 2004, Pedro Pais wrote:
Yes, does Outlook Express support TLS? I can't make it use it, which
is not very nice :(
Oops. Sorry about that. It indeed does not work.
This run script is
Charles Sprickman wrote:
So I have to choose: using a cryptography authentication method
that's not safe or having the password being save as plain (wich is
not safe either)?
No...
You did not pointed how to do what I'm asking: is it possible to use
CRAM-MD5 without clear passwords?
They
On Fri, 10 Dec 2004, Eduardo M. Bragatto wrote:
Tom Collins wrote:
If you stored a single encoded password, anyone sniffing the line could
learn the encoded version and just re-use it.
So I have to choose: using a cryptography authentication method
that's not safe or having the password being
On Mon, 13 Dec 2004 17:37:00 -0500 (EST), Charles Sprickman
[EMAIL PROTECTED] wrote:
On Fri, 10 Dec 2004, Eduardo M. Bragatto wrote:
Tom Collins wrote:
If you stored a single encoded password, anyone sniffing the line could
learn the encoded version and just re-use it.
So I
On Mon, 13 Dec 2004 21:26:10 -0500 (EST), Charles Sprickman
[EMAIL PROTECTED] wrote:
On Tue, 14 Dec 2004, Pedro Pais wrote:
Yes, does Outlook Express support TLS? I can't make it use it, which
is not very nice :(
Oops. Sorry about that. It indeed does not work.
This run script is
On Thu, 9 Dec 2004, Tom Collins wrote:
On Dec 9, 2004, at 1:53 PM, Charles Sprickman wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have clear-text
passwords enabled. I still need to look at my pop and smtp servers to see
how I can make them not advertise something that's not
On Tue, 14 Dec 2004, Pedro Pais wrote:
Yes, does Outlook Express support TLS? I can't make it use it, which
is not very nice :(
Oops. Sorry about that. It indeed does not work.
This run script is interesting, it will put up an stunnel SSL connection
that should make Outhouse Express happy:
On Fri, 10 Dec 2004 19:28:32 +, Pedro Pais [EMAIL PROTECTED] wrote:
On Thu, 9 Dec 2004 21:39:22 -0800, Tom Collins [EMAIL PROTECTED] wrote:
On Dec 9, 2004, at 3:20 PM, Pedro Pais wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have
clear-text
passwords enabled.
Tom Collins wrote:
If you stored a single encoded password, anyone sniffing the line could
learn the encoded version and just re-use it.
So I have to choose: using a cryptography authentication method that's
not safe or having the password being save as plain (wich is not safe
either)?
Sure I
On Thu, 9 Dec 2004 21:39:22 -0800, Tom Collins [EMAIL PROTECTED] wrote:
On Dec 9, 2004, at 3:20 PM, Pedro Pais wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have
clear-text
passwords enabled. I still need to look at my pop and smtp servers
to see
how I can make them
On Dec 10, 2004, at 11:28 AM, Pedro Pais wrote:
But why isn't the password stored in the passwd/mysql using CRAM-MD5
format? That way you could always check it. It wouldn't matter if the
client authenticated using plain or using CRAM-MD5. You could even
double cypher the password using mysql
On Wed, 8 Dec 2004, Tom Collins wrote:
On Dec 8, 2004, at 8:04 AM, Pedro Pais wrote:
When a user tries to authenticate itself, the first time vchkpw fails with:
Dec 6 21:50:08 [vpopmail] vchkpw-smtp: password fail
but then it succeeds immediatly after:
Dec 6 21:50:13 [vpopmail] vchkpw-smtp:
On Thu, 9 Dec 2004 16:53:30 -0500 (EST), Charles Sprickman
[EMAIL PROTECTED] wrote:
On Wed, 8 Dec 2004, Tom Collins wrote:
On Dec 8, 2004, at 8:04 AM, Pedro Pais wrote:
When a user tries to authenticate itself, the first time vchkpw fails with:
Dec 6 21:50:08 [vpopmail]
On Dec 9, 2004, at 1:53 PM, Charles Sprickman wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have
clear-text passwords enabled. I still need to look at my pop and smtp
servers to see how I can make them not advertise something that's not
available on my system...
Good point
On Thursday 09 December 2004 06:16 pm, Tom Collins wrote:
On Dec 9, 2004, at 1:53 PM, Charles Sprickman wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have
clear-text passwords enabled. I still need to look at my pop and smtp
servers to see how I can make them not
On Dec 9, 2004, at 3:20 PM, Pedro Pais wrote:
Also, I'm fairly certain that CRAM-MD5 requires that you have
clear-text
passwords enabled. I still need to look at my pop and smtp servers
to see
how I can make them not advertise something that's not available on my
system...
Really? That doesn't
When a user tries to authenticate itself, the first time vchkpw fails with:
Dec 6 21:50:08 [vpopmail] vchkpw-smtp: password fail
but then it succeeds immediatly after:
Dec 6 21:50:13 [vpopmail] vchkpw-smtp: (PLAIN) login success
This is very annoying, besides the fact that this only happens
On Dec 8, 2004, at 8:04 AM, Pedro Pais wrote:
When a user tries to authenticate itself, the first time vchkpw fails
with:
Dec 6 21:50:08 [vpopmail] vchkpw-smtp: password fail
but then it succeeds immediatly after:
Dec 6 21:50:13 [vpopmail] vchkpw-smtp: (PLAIN) login success
This is very
On Wed, 8 Dec 2004 10:39:35 -0800, Tom Collins [EMAIL PROTECTED] wrote:
On Dec 8, 2004, at 8:04 AM, Pedro Pais wrote:
When a user tries to authenticate itself, the first time vchkpw fails
with:
Dec 6 21:50:08 [vpopmail] vchkpw-smtp: password fail
but then it succeeds immediatly
22 matches
Mail list logo