Broken kio_smtp
Andras Mantia
amantia at freemail.hu
Fri Apr 11 08:21:15 BST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday 2003 April 11 01:50, you wrote:
> On Thursday 10 April 2003 20:47, you wrote:
> <snip>
>
> > Actually there are two servers, non of them works. I don' know if it
> > helps you, but their names are mail.zappmobile.ro and
> > smtp.virtualartisans.com.
>
> <snip>
>
> Eureka! You're witness of the bug that I've fixed:
> > from HEAD: [SECURITY] Don't silently bypass authentication if we're
> > asked to use it and the server doesn't support any mechanisms.
>
> So the answer is:
> 1. Your servers don't support SMTP-AUTH _at all_
> 2. The old slave simply didn't tell you this. You've always used
> non-authenticated connections and you were never told.
>
> Good news: The old slave never sent your password over the net.
> Bad news: The new one does, as long as you force it to try AUTH PLAIN.
Hm, I never knew it. I just wanted to write an e-mail that my password were
good, as it works with the old slave. Also (as I heard) the seconds server
needs an pop3 login before you can send mail through it, so this is why you
may not saw the SMTP capabilities when telnetting to it. So, do you say now
it's fixed? I will give it a try.
Andras
>
> Marc
- --
Quanta Plus developer - http://quanta.sourceforge.net
K Desktop Environment - http://www.kde.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+lmzwTQdfac6L/08RAiVeAKCp7xp8jNzVgEt4iWqToBWdamy0swCfS8rK
Hawdypj8XRGsJm5vLo25UQw=
=1C07
-----END PGP SIGNATURE-----
More information about the kde-core-devel
mailing list