[Dovecot] tls and auth plain login

Timo Sirainen tss at iki.fi
Wed Mar 4 00:37:15 EET 2009


On Tue, 2009-03-03 at 10:48 -0800, Bradley Giesbrecht wrote:
> I want to allow plain text passwords only on ssl/tls.

The default settings do that.

> Is it possible to have:
> auth default {
>      mechanisms = cram-md5 ntlm

mechanisms = plain cram-md5 ntlm

And then verify that you have disable_plaintext_auth=yes, which is also
the default.

When testing make sure you don't test it from local server, because
Dovecot treats local IPs as trusted.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20090303/2c095ffd/attachment.bin 


More information about the dovecot mailing list