6 Sep
2004
6 Sep
'04
3:06 a.m.
I noticed that...
# Disable LOGIN command and all other plaintext authentications unless # SSL/TLS is used (LOGINDISABLED capability). Note that 127.*.*.* and # IPv6 ::1 addresses are considered secure, this setting has no effect if # you connect from those addresses. #disable_plaintext_auth = yes
...was added to the latest release. Thanks Timo! This takes the localhost-SSL burden off. :)
Paul