Mercurial > dovecot > original-hg > dovecot-1.2

changeset 8564:3c4934783aff HEAD

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Mention SSL/TLS in "plaintext auth disallowed" error.
author Timo Sirainen <tss@iki.fi>
date Wed, 17 Dec 2008 20:12:11 +0200
parents 4c2ff35ba88d
children 23ae9c63ae47
files TODO src/imap-login/client-authenticate.c src/login-common/common.h
diffstat 3 files changed, 17 insertions(+), 5 deletions(-) [+]
line wrap: on
line diff
--- a/TODO	Tue Dec 16 15:37:16 2008 +0200
+++ b/TODO	Wed Dec 17 20:12:11 2008 +0200
@@ -1,3 +1,17 @@
+ - proxying: support fallbacking to local (or other?) server if the first
+   one is down
+user_attrs {
+  uid = %{ldap:uidNumber}
+  home = %{ldap:homeDirectory}
+  quota_bytes = *:bytes=%{ldap:quota}
+}
+
+fts_solr: select() failed: Interrupted system call
+fts_solr: Indexing failed: (null)
+
+imap(tss)(pid=12890): Error: dovecot-acl-list creation failed:
+safe_mkstemp(/usr/local/var/run/dovecot/user-not-found/test/temp.hurina.12890.87eb6b37b351b733) failed: No such file or directory
+
  - i_panic("Message count decreased") happens - why?
  - fts-solr: handle DELETE, RENAME
  - fsck -> log_file_tail_offset 2273345664 -> 996 ->
@@ -102,8 +116,6 @@
  - maildir
    - don't allow more than 26 keywords
    - physical separator could be configurable
-   - setting flags to same as they already are causes unnecessary
-     rename()s with identical parameters
    - deliver+maildir: if new mails are in new/ or cur/ they're not added to
      dovecot-uidlist but newly saved mails are, so UIDs will be in wrong order
    - maildir_copy_with_hardlinks: We're currently first hardlinking to tmp/ and
--- a/src/imap-login/client-authenticate.c	Tue Dec 16 15:37:16 2008 +0200
+++ b/src/imap-login/client-authenticate.c	Wed Dec 17 20:12:11 2008 +0200
@@ -352,8 +352,8 @@
 		client->common.auth_tried_disabled_plaintext = TRUE;
 		client->common.auth_attempts++;
 		client_send_line(client,
-			"* BAD [ALERT] Plaintext authentication is disabled, "
-			"but your client sent password in plaintext anyway. "
+			"* BAD [ALERT] Plaintext authentication not allowed "
+			"without SSL/TLS, but your client did it anyway. "
 			"If anyone was listening, the password was exposed.");
 		client_send_tagline(client, "NO ["IMAP_RESP_CODE_CLIENTBUG"] "
 				    AUTH_PLAINTEXT_DISABLED_MSG);
--- a/src/login-common/common.h	Tue Dec 16 15:37:16 2008 +0200
+++ b/src/login-common/common.h	Wed Dec 17 20:12:11 2008 +0200
@@ -9,7 +9,7 @@
 #define AUTH_FAILED_MSG "Authentication failed."
 #define AUTH_TEMP_FAILED_MSG "Temporary authentication failure."
 #define AUTH_PLAINTEXT_DISABLED_MSG \
-	"Plaintext authentication disallowed on non-secure connections."
+	"Plaintext authentication disallowed on non-secure (SSL/TLS) connections."
 
 extern const char *login_protocol;