[Dovecot] Incompatibility Thunderbirds Auth Mech TLS-Certificate <-> Dovecot
Reindl Harald
h.reindl at thelounge.net
Fri Apr 25 13:02:14 UTC 2014
Am 25.04.2014 14:56, schrieb Christian Felsing:
> Apr 25 14:29:01 dovecot dovecot: imap-login: Disconnected (no auth
> attempts in 5 secs): user=<>, rip=192.168.1.99, lip=192.168.42.1, TLS,
> session=<3+1THN33NQBtWq5D>
>
> Dovecot wants an IMAP login, but Thunderbird does not so. I am not sure
> if that is a bug (or feature) of Dovecot or Thunderbird. Thunderbird
> does several strange things on client certificates:
that is the normal behavior if you force a auth-mech on the client
which the server don't announce - auth-mech and TLS certificicate
are completly different worlds
just configure thunderbird to use plain instead encrypted auth
which means CRAM-MD5 at the end of the day, by default dovecot
only offers PLAIN which is fine inside a TLS connection
you can only support CRAM-MD5 with passwords stored as plain-text
[root at testserver:~]$ doveconf -n | grep -i mech
auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN
[root at testserver:~]$ doveconf -d | grep -i mech
auth_mechanisms = plain
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 246 bytes
Desc: OpenPGP digital signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20140425/b468c0da/attachment.sig>
More information about the dovecot
mailing list