dovecot-1.2: Mention SSL/TLS in "plaintext auth disallowed" error.

dovecot at dovecot.org dovecot at dovecot.org
Wed Dec 17 20:12:32 EET 2008 

details:   http://hg.dovecot.org/dovecot-1.2/rev/3c4934783aff
changeset: 8564:3c4934783aff
user:      Timo Sirainen <tss at iki.fi>
date:      Wed Dec 17 20:12:11 2008 +0200
description:
Mention SSL/TLS in "plaintext auth disallowed" error.

diffstat:

3 files changed, 17 insertions(+), 5 deletions(-)
TODO                                 |   16 ++++++++++++++--
src/imap-login/client-authenticate.c |    4 ++--
src/login-common/common.h            |    2 +-

diffs (56 lines):

diff -r 4c2ff35ba88d -r 3c4934783aff TODO
--- a/TODO	Tue Dec 16 15:37:16 2008 +0200
+++ b/TODO	Wed Dec 17 20:12:11 2008 +0200
@@ -1,3 +1,17 @@
+ - proxying: support fallbacking to local (or other?) server if the first
+   one is down
+user_attrs {
+  uid = %{ldap:uidNumber}
+  home = %{ldap:homeDirectory}
+  quota_bytes = *:bytes=%{ldap:quota}
+}
+
+fts_solr: select() failed: Interrupted system call
+fts_solr: Indexing failed: (null)
+
+imap(tss)(pid=12890): Error: dovecot-acl-list creation failed:
+safe_mkstemp(/usr/local/var/run/dovecot/user-not-found/test/temp.hurina.12890.87eb6b37b351b733) failed: No such file or directory
+
  - i_panic("Message count decreased") happens - why?
  - fts-solr: handle DELETE, RENAME
  - fsck -> log_file_tail_offset 2273345664 -> 996 ->
@@ -102,8 +116,6 @@
  - maildir
    - don't allow more than 26 keywords
    - physical separator could be configurable
-   - setting flags to same as they already are causes unnecessary
-     rename()s with identical parameters
    - deliver+maildir: if new mails are in new/ or cur/ they're not added to
      dovecot-uidlist but newly saved mails are, so UIDs will be in wrong order
    - maildir_copy_with_hardlinks: We're currently first hardlinking to tmp/ and
diff -r 4c2ff35ba88d -r 3c4934783aff src/imap-login/client-authenticate.c
--- a/src/imap-login/client-authenticate.c	Tue Dec 16 15:37:16 2008 +0200
+++ b/src/imap-login/client-authenticate.c	Wed Dec 17 20:12:11 2008 +0200
@@ -352,8 +352,8 @@ int cmd_login(struct imap_client *client
 		client->common.auth_tried_disabled_plaintext = TRUE;
 		client->common.auth_attempts++;
 		client_send_line(client,
-			"* BAD [ALERT] Plaintext authentication is disabled, "
-			"but your client sent password in plaintext anyway. "
+			"* BAD [ALERT] Plaintext authentication not allowed "
+			"without SSL/TLS, but your client did it anyway. "
 			"If anyone was listening, the password was exposed.");
 		client_send_tagline(client, "NO ["IMAP_RESP_CODE_CLIENTBUG"] "
 				    AUTH_PLAINTEXT_DISABLED_MSG);
diff -r 4c2ff35ba88d -r 3c4934783aff src/login-common/common.h
--- a/src/login-common/common.h	Tue Dec 16 15:37:16 2008 +0200
+++ b/src/login-common/common.h	Wed Dec 17 20:12:11 2008 +0200
@@ -9,7 +9,7 @@
 #define AUTH_FAILED_MSG "Authentication failed."
 #define AUTH_TEMP_FAILED_MSG "Temporary authentication failure."
 #define AUTH_PLAINTEXT_DISABLED_MSG \
-	"Plaintext authentication disallowed on non-secure connections."
+	"Plaintext authentication disallowed on non-secure (SSL/TLS) connections."
 
 extern const char *login_protocol;

More information about the dovecot-cvs mailing list