On Fri, Jan 14, 2005 at 06:50:55AM +0100, Hasse Hagen Johansen wrote: > Yes it is working fine, but I cannot force users to use either > StartTLS or imaps ;-) I think I maybe can try to fix this in the > source (I believe it should be pretty simple? Even for me...some if > about reading STARTLS as the first command right?)
First find the STARTTLS command handler and see if/how it stores the fact that an SSL negotiation was successfully completed. Then find the place where the "plain login not allowed" error message is printed, that will probably be right after the check for SSL-mode. Add the state information set by the STARTTLS handler to this condition, and it should be all done. If the STARTTLS doesn't set any global state, perhaps look for what the --ssl parameter leads to, and just enable that after a successful STARTTLS. :) //Peter
