Marc Dirix wrote: > Hi, > > > I expected login to fail, but somehow succeed. > > > I have dbmail_usermap as follow: > login | sock_allow | sock_deny | userid > -------+-------------------------+-----------+----------------- > ANY | inet:10.0.0.6:110 | | [EMAIL PROTECTED] > > > All users are in the database as this user: [EMAIL PROTECTED] > > Now I try to login with pop, and username admintmp. This works very > well, namely > admintmp is changed to [EMAIL PROTECTED] and the user is authenticated. > > However now I try to connect with imap, *without* changing the above > dbmail_usermap. > One would think loggin in with only admintmp would fail, but it doesn't. > admintmp also get's extended with foo.com, and authentication works as > with pop. > > This is strange behaviour not?
The socket matching code isn't strict enough. Turns out it selects the best match, based on a scoring algorithm. But it doesn't use a minimum threshold score below which matches are ignored. Please file a bugreport. I'll fix this asap so it can go into 2.2.2 -- ________________________________________________________________ Paul Stevens paul at nfg.nl NET FACILITIES GROUP GPG/PGP: 1024D/11F8CD31 The Netherlands________________________________http://www.nfg.nl
