[dovecot-cvs] dovecot dovecot-example.conf,1.58,1.59
cras at procontrol.fi
cras at procontrol.fi
Wed Apr 2 06:09:43 EEST 2003
Update of /home/cvs/dovecot
In directory danu:/tmp/cvs-serv15194
Modified Files:
dovecot-example.conf
Log Message:
Moved auth_username_chars from db-pgsql to generic for all. Some other
auth code cleanups.
Index: dovecot-example.conf
===================================================================
RCS file: /home/cvs/dovecot/dovecot-example.conf,v
retrieving revision 1.58
retrieving revision 1.59
diff -u -d -r1.58 -r1.59
--- dovecot-example.conf 2 Apr 2003 01:00:02 -0000 1.58
+++ dovecot-example.conf 2 Apr 2003 02:09:41 -0000 1.59
@@ -393,6 +393,13 @@
# Number of authentication processes to create
#auth_count = 1
+# List of allowed characters in username. If the user-given username contains
+# a character not listed in here, the login automatically fails. This is just
+# an extra check to make sure user can't exploit any potential quote escaping
+# vulnerabilities with SQL/LDAP databases. If you want to allow all characters,
+# set this value to empty.
+#auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@
+
# More verbose logging. Useful for figuring out why authentication isn't
# working.
#auth_verbose = no
More information about the dovecot-cvs
mailing list