chirs charter wrote:
>
> Hello,
> Can someone elaborate on these two log entries:
>
> Aug 27 21:22:12 catfish imapd[3449]: [ID 781445
> local6.notice] starttls: TLSv1 w
> ith cipher RC4-MD5 (128/128 bits) no authentication
> Aug 27 21:22:14 catfish imapd[3449]: [ID 237943
> local6.notice] login: chirs.home
> .net[206.150.228.61] chirs plaintext+TLS
>
> Why no authentication when I am using sasl? Is this
> actualy beinag encrypted then? Any feedback would be
> appreciated. Thanks
First, this has nothing to do with SASL, this is purely a TLS issue. If
you look at the log closely, both entries refer to the SAME session.
The starttls: entry simply tells you what the cipher was and that the
client (machine) was not authenticated (ie, did not present a
certificate that could be validated). The login: entry tells you that
the user authenticated via a plaintext method that was protected by TLS
encryption.
I quick look at the source should make this pretty clear.
Ken
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
