Hello all,
I was pleasantly surprised to find a djb-styled IMAP server that resulted
from someone getting fed up with the arrogant Courier people. :)
Anyway, bincimap-1.2.7final looks pretty sweet and I'm ready to put it
into production, replacing Courier, save one issue -- the "allow plain
auth in non ssl = yes" configuration directive seems to be ignored.
I know that allowing cleartext auth in non-encrypted protocols is a Bad
Thing (TM). Unfortunately, the PHB's don't want to ruffle the existing
user base... :(
root 15211 15161 0 15:43 ? 00:00:00 tcpserver -c 100 -u 0 -g 0 -l
(my.host.name) -HDRP 0 143 /usr/local/binc/bin/bincimap-up
--logtype=multilog --conf=/usr/local/binc/etc/bincimap.conf --
/bin/checkpassword /usr/local/binc/bin/bincimapd
([EMAIL PROTECTED]) [binc]# grep "allow plain"
/usr/local/binc/etc/bincimap.conf
allow plain auth in non ssl = "yes"
([EMAIL PROTECTED]) [binc]# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK Welcome to Binc IMAP Copyright (C) 2002-2004 Andreas Aardal Hanssen
at 2004-04-28 15:46:28 EDT
1 login testuser foobar
1 NO LOGIN failed: Plain text password authentication is disallowed.
Please try enabling SSL or TLS in your mail client.
@4000000040900a1e1e3dbcc4 15226 0 [EMAIL PROTECTED]:] connection from
127.0.0.1
@4000000040900a26398b318c 15226 1 [EMAIL PROTECTED]:] shutting down
(client disconnected) - read:25 bytes, wrote:279 bytes.
In case it matters, testuser/foobar is a valid user/pass on this system.
Did I miss anything? Would any other info be useful?
--
Kevin DeGraaf
