From: Ken Murchison
Date: 13/8/2015 19:13:49
> I know this patch has already been applied to Git, but it shouldn't be
> necessary, and can probably be backed out. If you want to force
> confidentiality, all you need to do is to set sasl_minimum_layer to 2 or
> higher. With a value of 2, DIGE
I know this patch has already been applied to Git, but it shouldn't be
necessary, and can probably be backed out. If you want to force
confidentiality, all you need to do is to set sasl_minimum_layer to 2 or
higher. With a value of 2, DIGEST-MD5, GSSAPI, and KERBEROS_V4 will
still be advertis
On Mon, Aug 10, 2015, at 10:43 PM, Leena Heino wrote:
> On Mon, 10 Aug 2015, Bron Gondwana wrote:
>
> > On Mon, Aug 10, 2015, at 21:05, Carlos Velasco wrote:
> >>
> >> El 10/08/2015 a las 7:42, Leena Heino escribió:
> >>> Attached is a patch to add CA certificate options to cyradm. The patch
> >>>
On Mon, 10 Aug 2015, Bron Gondwana wrote:
On Mon, Aug 10, 2015, at 21:05, Carlos Velasco wrote:
El 10/08/2015 a las 7:42, Leena Heino escribió:
Attached is a patch to add CA certificate options to cyradm. The patch
does not change the dafault functionality in cyradm it only adds
the missing C
On Mon, Aug 10, 2015, at 21:05, Carlos Velasco wrote:
>
> El 10/08/2015 a las 7:42, Leena Heino escribió:
> > Attached is a patch to add CA certificate options to cyradm. The patch
> > does not change the dafault functionality in cyradm it only adds
> > the missing CA certificate options and doc
El 10/08/2015 a las 7:42, Leena Heino escribió:
> Attached is a patch to add CA certificate options to cyradm. The patch
> does not change the dafault functionality in cyradm it only adds
> the missing CA certificate options and documentation.
>
> This is a refinement to the patch that Carlos V
Hi,
Attached is a patch to add CA certificate options to cyradm. The patch
does not change the dafault functionality in cyradm it only adds
the missing CA certificate options and documentation.
This is a refinement to the patch that Carlos Velasco patch has sent.
This patch can be applied to
On Mon, Aug 10, 2015, at 00:20, Carlos Velasco wrote:
> > From: Bron Gondwana
> > Date: 9/8/2015 13:24:05
>
> > I'm happy with that. We go a step further at FastMail and require SSL
> > always (port 993). See arguments here:
> > https://www.fastmail.com/help/technical/ssltlsstarttls.html
>
From: Nic Bernstein
Date: 9/8/2015 19:40:26
> Could you add a stanza to /lib/imapoptions describing any configuration
> options you've added? Don't worry if it's perfect, just get something
> in there so we documentation folk can make sure they get into the man pages.
Attached v3 patch. Inclu
Carlos,
Could you add a stanza to /lib/imapoptions describing any configuration
options you've added? Don't worry if it's perfect, just get something
in there so we documentation folk can make sure they get into the man pages.
Thanks!
-nic
On 08/09/2015 09:17 AM, Carlos Velasco wrote:
V
> From: Bron Gondwana
> Date: 9/8/2015 13:24:05
> I'm happy with that. We go a step further at FastMail and require SSL always
> (port 993). See arguments here:
> https://www.fastmail.com/help/technical/ssltlsstarttls.html
Problem with port 993 is that enterprise firewalls (at least here in S
Version 2 patch. Including timsieved.
Also in the patch is some code for Serverinfo switch in timsieved to not
disclose name and/or version info in "IMPLEMENTATION" if Serverinfo is Off or
Min.
Regards,
Carlos Velasco
Original Message
Subject: Patch: forcing SSL before auth
Fr
On Sun, Aug 9, 2015, at 20:18, Carlos Velasco wrote:
> Hi,
>
> Right now, "allowplaintext" option disallow using a plain authentication if
> session is not protected by TLS.
> However, this setting still allows a client to make MD5 or SHA1 auth without
> session being protected by TLS. This can
On Sun, Aug 9, 2015, at 20:18, Carlos Velasco wrote:
> Hi,
>
> Right now, "allowplaintext" option disallow using a plain authentication if
> session is not protected by TLS.
> However, this setting still allows a client to make MD5 or SHA1 auth without
> session being protected by TLS. This can
14 matches
Mail list logo
