[hardy:cyrus-imapd-2.2] imapd.conf comment conflicts with the manual
Henrik Pauli
henrik.pauli at gmail.com
Wed Aug 6 18:29:25 BST 2008
Hello,
In imapd.conf, there's this line:
# Allow plaintext logins by default (SASL PLAIN)
allowplaintext: yes
And in the manual, it says the following:
allowplaintext: 1
Allow the use of cleartext passwords on the wire.
To disallow the use of plaintext passwords for authentication, you can
set ‘‘allowplaintext: no’’ in imapd.conf. This will still allow PLAIN under
TLS, but IMAP LOGIN
commands will now fail.
If you only list plaintext authentication mechanisms
in ‘‘sasl_mech_list’’ and set ‘‘allowplaintext: no’’, only users on encrypted
sessions (TLS or SSL) will be able
to authenticate. On the other hand, if you list no plaintext
authentication options in ‘‘sasl_mech_list’’, ‘‘allowplaintext: yes’’ would
have no effect.
The latter is what appears to be true, but from the comment in the config
file, it would seem that enabling this option is required even for TLS/SSL
wrapped plaintext logins.
I think it might be a good idea to rephrase the config file comments, or sync
them with the manual.
Cheers,
H.
More information about the Ubuntu-motu
mailing list