Le Tuesday 28 January 2014 à 11:28 +0100, Steffen Kaiser a écrit :
On Tue, 28 Jan 2014, Anthony Bourguignon wrote:
Le Monday 27 January 2014 à 12:08 -0500, Steve Litt a écrit :
I read in some docs somewhere that Dovecot automatically trusts anything on localhost. If you're telnetting into it from the same physical computer that hosts the port, try telnetting into it from a different physical computer with a different IP address and see if you can still telnet in.
I've tried from localhost and another computer. In both tries, the connection is made without ssl.
Hmm, maybe "internal" sockets do not utilize SSL at all? Just IMAP/POP/ManageSieve?
Maybe. I don't know. But that's cleary an issue. I'm trying to use dovecot authentication as a backend for prosody (a xmpp server). Dovecot and prosody are not on the same host. Sending my password in cleartext on the network is not a good option according to me ;) .
Thanks