On 2006-03-30, at 2124, Rick Widmer wrote:
John Simpson wrote:

http://qmail.jms1.net/vpopmaild.shtml shows a clearer example of how to
run vpopmaild under daemontools, by the way.

Nice page!

Just a thought... if you are only using vpopmaild to verify user logins, you might want to use the compact flag.

   login [EMAIL PROTECTED] password compact

this will reduce the amount of trash you have to ignore by returning the numeric GID flags value rather than sending a line per bit.

i hadn't noticed that in the README.vpopmail file. this is actually a problem.

how does vpopmaild handle users who have spaces in their passwords? having "compact" as a space-separated parameter imposes an artificial limitation on the set of characters available for use in passwords- it means that users with existing passwords containing spaces will not be able to log into vpopmaild, and if somebody is running an SMTP service which relies on vpopmaild to validate AUTH commands (which is a patch that i'm working on) it means that those users will not be able to AUTH successfully.

let me suggest an alternative- instead of "login user pass compact", how about "login/compact user pass"? this allows the password to be the last thing on the line, and therefore contain spaces, and still allows for a "compact" option.

you could even add in a "login/silent user pass", which simply sends "+OK \r\n" as the reply for a successful login, rather than showing ANY information about the mailbox... just the thing for a simple application like an SMTP AUTH client, which doesn't need any information other than "yes or no".

any thoughts? if needed, i will write the patch to make this happen- let me know.

i would also like to see the output from the "help" command trim itself to the set of commands which are actually available to the client- before login, for example, the list would have "login", "help", and "quit", and would not disconnect the client (as it does now.) for a normal user it would only show the commands relating to their own mailbox without any admin-level commands, for a domain admin it would show the domain-level commands but not the system- admin level stuff, and so forth. this is also a patch i am willing to write, if there is any interest in it.

| John M. Simpson - KG4ZOW - Programmer At Large |
| http://www.jms1.net/           <[EMAIL PROTECTED]> |
| Mac OS X proves that it's easier to make UNIX  |
| pretty than it is to make Windows secure.      |

Attachment: PGP.sig
Description: This is a digitally signed message part

Reply via email to