Detail on missing CAPA probes.

svn path=/branches/BRANCH_6-3/; revision=4978
author: Matthias Andree <matthias.andree@gmx.de> 2006-11-29 22:05:16 +0000
committer: Matthias Andree <matthias.andree@gmx.de> 2006-11-29 22:05:16 +0000
commit: fb1adf19fff231ee8f55c15cf7866ca5319043db (patch)
tree: 66442b055a0b3209db1247e1e7fd869c4554da1c /fetchmail-SA-2006-02.txt
parent: 709cf45788e98f1f6375f290d9ce376134b1dae9 (diff)
download: fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.tar.gz
fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.tar.bz2
fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/fetchmail-SA-2006-02.txt b/fetchmail-SA-2006-02.txt
index 3d7f2387..1704512f 100644
--- a/fetchmail-SA-2006-02.txt
+++ b/fetchmail-SA-2006-02.txt
@@ -58,8 +58,9 @@ V2. Even with "sslproto tls1" in the config, fetches would go ahead
 
 V3. POP3 fetches could completely ignore all TLS options whether
     available or not because it didn't reliably issue CAPA before
-    checking for STLS support, and it would only try STLS if it had seen
-    the server's advertisement.
+    checking for STLS support - but CAPA is a requisite for STLS.
+    Whether or not CAPAbilities were probed, depended on the "auth"
+    option.
 
 V4. POP3 could fall back to using plain text passwords, even if strong
     authentication had been configured.
author	Matthias Andree <matthias.andree@gmx.de>	2006-11-29 22:05:16 +0000
committer	Matthias Andree <matthias.andree@gmx.de>	2006-11-29 22:05:16 +0000
commit	fb1adf19fff231ee8f55c15cf7866ca5319043db (patch)
tree	66442b055a0b3209db1247e1e7fd869c4554da1c /fetchmail-SA-2006-02.txt
parent	709cf45788e98f1f6375f290d9ce376134b1dae9 (diff)
download	fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.tar.gz fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.tar.bz2 fetchmail-fb1adf19fff231ee8f55c15cf7866ca5319043db.zip