[dovecot-cvs] dovecot dovecot-example.conf,1.206,1.207
cras at dovecot.org
cras at dovecot.org
Sat Jul 1 23:09:38 EEST 2006
Update of /var/lib/cvs/dovecot
In directory talvi:/tmp/cvs-serv3701
Modified Files:
dovecot-example.conf
Log Message:
Removed hardcoded 127.* and ::1 IP checks. Instead just check that local IP
matches remote IP to assume the connection is secure.
Index: dovecot-example.conf
===================================================================
RCS file: /var/lib/cvs/dovecot/dovecot-example.conf,v
retrieving revision 1.206
retrieving revision 1.207
diff -u -d -r1.206 -r1.207
--- dovecot-example.conf 29 Jun 2006 12:50:18 -0000 1.206
+++ dovecot-example.conf 1 Jul 2006 20:09:36 -0000 1.207
@@ -38,9 +38,9 @@
#listen = *
# Disable LOGIN command and all other plaintext authentications unless
-# SSL/TLS is used (LOGINDISABLED capability). Note that 127.*.*.* and
-# IPv6 ::1 addresses are considered secure, this setting has no effect if
-# you connect from those addresses.
+# SSL/TLS is used (LOGINDISABLED capability). Note that if the remote IP
+# matches the local IP (ie. you're connecting from the same computer), the
+# connection is considered secure and plaintext authentication is allowed.
#disable_plaintext_auth = yes
# Should all IMAP and POP3 processes be killed when Dovecot master process
More information about the dovecot-cvs
mailing list