Evgeniy Berdnikov <[email protected]> writes: > On Tue, Oct 21, 2014 at 05:26:57PM +0800, Eric Abrahamsen wrote: >> >> Before I go pester someone else, my last question: >> >> For this example account, the AUTHENTICATE string should, as I >> understand it, be derivable like this: >> >> $ pas=$(echo -en "\[email protected]\0ThisIsMyPassword" | base64) >> >> If I telnet into my local dovecot server, and issue ", authenticate >> plain", together with the string from above, it logs in correctly. > > Are strings identical that you posted here and have entered by hands? > Run "base64 -d" to decode and compare. Their contents are different.
And with that I realize that I have also effectively posted my remote email password in a trivially-decodable format! Already changed. This definitely means it's time for dinner and a beer. ------------------------------------------------------------------------------ Comprehensive Server Monitoring with Site24x7. Monitor 10 servers for $9/Month. Get alerted through email, SMS, voice calls or mobile push notifications. Take corrective actions from your mobile device. http://p.sf.net/sfu/Zoho _______________________________________________ isync-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/isync-devel
