On Fri, 29 Aug 2003, Peter Stuge wrote:
>OpenSSL is installed in the default location /usr/local/ssl on my system.
>configure could check there to spare me the {C,CXX,LD}FLAGS hassle.Okay.. I'll also add configure options so you can set the location there. >What is the deal with IMAP+SSL? There's STARTTLS after which SSL kicks in. >But what's the thought for port 993? How would one best set Binc up at port >993, maybe using additional programs, so that Mozilla can IMAP in SSL? ... >If additional programs are in fact needed, MYHO is that there should be >nothing called imaps anywhere in Binc. However, since everything needed for >TLS is already in Binc --with-ssl it should be trivial to make Binc do SSL >already from the start as well. And that would be an imaps service, on port >993. Am I correct? That's something for the imap protocol mailing list. Originally it was thought that all internet services were fine with no SSL layering. Then someone came up with the idea that one could put plain text good-old services behind an SSL tunnel/wrapper using a different port. That would allow both old plain-text clients and ssl-enabled clients to interop. Then someone thought that hey - that's not so good because now we have two holes in our firewall instead of one. And that extending the IMAP/SMTP/POP protocols with the STARTTLS command would allow one to still have only one hole in the firewall, and still allowing plain-text and crypto-clients to interop. Then came the pretty recent suggestion that SSL should be _required_. So that's where we are today. An IMAP server that wishes to support many clients needs to both support the plain text mode, the STARTTLS mode and the SSL mode. With Binc you are free to allow or disallow plain text authentication through the STARTTLS variant. >Installation was painless on my hybrid libc5/glibc system, as I expected. :) Great :) >I'm currently running with IMAPdir. >This is strange: >7 create "../Maildir" >7 NO CREATE failed: No such mailbox "bincimap-subscribed" Yikes. :-/ >after some cleaning up and restarting the client: >34 create "../Maildir" >34 NO CREATE failed: No such mailbox "bincimap-cache" Yikes. :-/ >Before doing the cleaning up just mentioned, Binc died unexpectedly upon >quit several times when I quit the client. I assume this to be because of >severe depot breakage due to experimenting with three different webmail >packages on Binc 1.1.8. All BYE responses are clean now. Hmmm... they should never die unexpectedly. >I do however get this in the log: >Client connected to Binc IMAP from 62.20.112.114 >User <[EMAIL PROTECTED]> entered authenticated mode. >Client disconnected >Server died by signal 13 (SIGPIPE) for <[EMAIL PROTECTED]> >Unprivileged stub shutting down - read:88 bytes, wrote:438 bytes. >Pretty good, but the server shouldn't terminate because of a SIGPIPE, right? No, you're right - that's bad practise. >On a side note, I'd like the folder mess to improve, folders are working >fine at least with IMAPdirs, but I see a folder named . (a single dot) in >Mozilla and I would like it to go away. Also, I would like to not have to >change the default setting of the INBOX prefix. You don't have to change this - it should be empty by default in the client, which is what we want with both IMAPdir and Maildir++. >How about Binc regex:ing all folder names before passing them on to the >filesystem? Yes, name checking of mailbox names is something we could benefit from. >Andreas, I'm sorry for rambling about this when I obviously don't know >much about it for real, I should go read the spec and figure out how it's >supposed to work, and write a really short and simple IMAP tutorial. :) >On the other hand, I'm not jaded yet, either. >I'd like to write a Binc-HOWTO, explaining Binc configuration. I'm thinking >about a client compatibility matrix for it, as well. Which clients work how >well with Binc. Notes, experiences and so on. That - would be excellent. :-) >Please send suggestions for columns in this matrix to me or the list. >Right now, I have: >* Default "server directory" >* Handles subfolders (folders in folders) >* SSL support >* STARTTLS support >* Notes >..so send me more. The Binc IMAP manual draft has been bundled in the docs area for some time now - I have meant for it to be a "Life with Binc" type of booklet. Maybe we could do something together here. >Binc 1.2 is very good. >Thanks for your seemingly endless enthousiasm, Andy, it's inspiring! :) Likewise, I'm really enjoying maintaining and developing this project. :-) Andy -- Andreas Aardal Hanssen | http://www.andreas.hanssen.name/gpg Author of Binc IMAP | "It is better not to do something http://www.bincimap.org/ | than to do it poorly."
