[Dovecot] [PATCHES] NetBSD support, authentication buffer size
Timo Sirainen
tss at iki.fi
Thu Apr 11 14:54:01 EEST 2013
On 11.4.2013, at 14.58, manu at netbsd.org (Emmanuel Dreyfus) wrote:
>> By this I think you don't mean special authentication mechanisms, or even
>> AUTHENTICATE PLAIN mechanism, but you mean that someone is using LOGIN
>> command in such a kludgy way that the password field is over 1024
>> bytes long?
>
> This is for pam_saml. The webmail sends a signed SAML assertion as the
> password, and the PAM module validates it.
The pam_saml could easily be changed to use AUTHENTICATE PLAIN instead.
> You did support in in 1.x and it did not harm anyone…
It does make it easier to waste the (pre-login!) process memory usage.
More information about the dovecot
mailing list