Re: [exim] Secure authentication and tls_on_connect

Pàgina inicial
Aquest missatge és part del següent fil:
M+\l'arbre de fils complet ordenat per data
MMMMark Edwards en <-
MGiuliano Gavazzi en ->
Delete this message
Reply to this message
Autor: Jakob Hirsch
Data:  
A: Mark Edwards
CC: exim-users
Assumpte: Re: [exim] Secure authentication and tls_on_connect
Mark Edwards wrote:

> client is set to port 465. However, in the default setting, if you
> simply choose "This server requires secure authentication" OE Mac
> seems to do its normal routine of checking on 25 to see if LOGIN
> authentication is offered, and then switches to 465 to do tls on
> connect.

Wow... are you _really_ sure about that? That is so wrong and stupid that
I can hardly believe somebody would do it.

In my experience, by "secure authentication" OE means NTLM/SPA, which Exim
does support. MacOE's behaviour could be some sort of fallback, like "I
saw the server supports LOGIN, but no NTLM. We want to be secure, so I use
smtps".

> That is, unless anyone has any way around this catch-22.

You could offer LOGIN and reject AUTH LOGIN in acl_smtp_auth if the
connection is not encrypted. But that is a very bad hack and could be even
to late, as the client could have sent his auth data with the AUTH LOGIN.

I'd tell the MacOE users to use port 465.



Aquest missatge es va enviar a les següents llistes de correu:
Exim-users
Informació sobre la llista de correu | Missatges propers		<-Re: [exim] problem(?) - SpamAssassin checks outgoing mailRe: [exim] Secure authentication and tls_on_connect->
Tahini and Hummus and Cumin Development Archives administrat per cumin AdminsLurker (versió 2.3)