[hardy:cyrus-imapd-2.2] imapd.conf comment conflicts with the manual

Henrik Pauli henrik.pauli at gmail.com
Wed Aug 6 18:29:25 BST 2008


In imapd.conf, there's this line:

# Allow plaintext logins by default (SASL PLAIN)
allowplaintext: yes

And in the manual, it says the following:

allowplaintext: 1
            Allow the use of cleartext passwords on the wire.

       To  disallow the use of plaintext passwords for authentication, you can 
set ‘‘allowplaintext: no’’ in imapd.conf. This will still allow PLAIN under 
       commands will now fail.

       If you only list plaintext authentication mechanisms 
in ‘‘sasl_mech_list’’ and set ‘‘allowplaintext: no’’, only users on encrypted 
sessions (TLS or SSL) will  be  able
       to authenticate. On the other hand, if you list no plaintext 
authentication options in ‘‘sasl_mech_list’’, ‘‘allowplaintext: yes’’ would 
have no effect.

The latter is what appears to be true, but from the comment in the config 
file, it would seem that enabling this option is required even for TLS/SSL 
wrapped plaintext logins.

I think it might be a good idea to rephrase the config file comments, or sync 
them with the manual.


More information about the Ubuntu-motu mailing list