On Fri, 2 Dec 2005, Otto Maddox wrote:
Since you say that you are using SSLTYPE=none, we know that this is not
the "no plaintext passwords on non-SSL/TLS sessions" issue.
I hadn't come across this issue. Do I need to be aware of it? (For
when I get around to building SSL-enabled imapd.)
This is a requirement of the IMAP specification. Servers are not supposed
to allow password authentication unless the session is secured with SSL or
TLS.
This frequently confuses novices who try to TELNET to an IMAP server to
test it, and wonder why they can't log in.
-- Mark --
http://panda.com/mrc
Democracy is two wolves and a sheep deciding what to eat for lunch.
Liberty is a well-armed sheep contesting the vote.
_______________________________________________
Imap-uw mailing list
[email protected]
https://mailman1.u.washington.edu/mailman/listinfo/imap-uw
