Re: dovecot security

From: Rob Owens <rowens@xxxxxxx>
Date: Wed, 20 Oct 2010 17:49:16 -0400

On Wed, Oct 20, 2010 at 01:05:08PM +0000, Camaleón wrote:

On Tue, 19 Oct 2010 16:24:29 -0400, Rob Owens wrote:

On Sun, Oct 17, 2010 at 05:56:40PM +0000, Camaleón wrote:

Plaintext Authentication
http://wiki2.dovecot.org/BasicConfiguration

Thanks for those links. I had a quick look at my config files again,
and they seem to allow plaintext authentication (which I don't want).
However, Icedove gives me an error when I try to connect without TLS or
SSL. This is good, but I want to make sure that it is dovecot that is
refusing to cooperate with plaintext connections.

Check Dovecot's log files. What error are you getting? :-?

dovecot: imap-login: Aborted login (0 authentication attempts):

And then it shows the IP address of my server and my client.

Icedove's error message is:

You cannot log in to you.server.net because the server has disabled
login. You may need to connect via SSL or TLS. Please check the
account settings for your mail server.

One detail I've left out, and the "cannot log in" error makes me wonder
about it: My user is an LDAP account user, and I did not configure
/etc/dovecot/dovecot-ldap.conf. My reason for not configuring it was
that dovecot seemed to work without it (but I initially used SSL, then
TLS).

...Well, there goes that theory. I just created a local (non-ldap) user
on the mail server and I get the same error when trying to connect
without SSL or TLS.

-Rob

--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
Archive: http://lists.debian.org/20101020214915.GB16991@xxxxxxxxxxxxxxxx

Follow-Ups:
- Re: dovecot security
  - From: Camaleón
- Re: dovecot security
  - From: Sjoerd Hardeman

References:
- dovecot security
  - From: Rob Owens
- Re: dovecot security
  - From: Camaleón
- Re: dovecot security
  - From: Rob Owens
- Re: dovecot security
  - From: Camaleón

Prev by Date: RE: Saludos desde Cuba
Next by Date: Re: Saludos desde Cuba
Previous by thread: Re: dovecot security
Next by thread: Re: dovecot security
Index(es):
- Date
- Thread

Relevant Pages

Re: What version of SSL in 5.0 Web Server
... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
(microsoft.public.windowsce.platbuilder)
Re: What version of SSL in 5.0 Web Server
... I rebooted the device so the Web server is ... SSL in Firefox so that only TLS is running. ... data security between application protocols such as HTTP (the protocol ...
(microsoft.public.windowsce.platbuilder)
Re: What version of SSL in 5.0 Web Server
... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
(microsoft.public.windowsce.platbuilder)
Re: followup to SSL+LTC
... > Could someone please explain the scope of SSL and TLS. ... SSL stands for Secure Socket Layer. ... authenticates the server to the client. ... cert against a known CA cert and uses the server cert's public ...
(sci.crypt)
Re: What version of SSL in 5.0 Web Server
... collectively referred to as SSL protocols. ... with TLS connections to the webserver? ... TLS should be enabled. ... I know there was a SSL 2.0, SSL 3.0, and TLS 1.0. ...
(microsoft.public.windowsce.platbuilder)