diff options
| author | Eric S. Raymond <esr@thyrsus.com> | 1996-10-10 17:47:52 +0000 |
|---|---|---|
| committer | Eric S. Raymond <esr@thyrsus.com> | 1996-10-10 17:47:52 +0000 |
| commit | 6cb67de133d4bc256dce49a631f5b2b7b34a382e (patch) | |
| tree | f43eeb42340023a95737adc71c6f279c0cfb021f /fetchmail.man | |
| parent | dcc479703ddcd3b99224a06b0947e4d8bd657063 (diff) | |
| download | fetchmail-6cb67de133d4bc256dce49a631f5b2b7b34a382e.tar.gz fetchmail-6cb67de133d4bc256dce49a631f5b2b7b34a382e.tar.bz2 fetchmail-6cb67de133d4bc256dce49a631f5b2b7b34a382e.zip | |
Kerberos integration, stage 3.
svn path=/trunk/; revision=283
Diffstat (limited to 'fetchmail.man')
| -rw-r--r-- | fetchmail.man | 30 |
1 files changed, 28 insertions, 2 deletions
diff --git a/fetchmail.man b/fetchmail.man index 39ba3594..13a4df11 100644 --- a/fetchmail.man +++ b/fetchmail.man @@ -115,7 +115,7 @@ Post Office Protocol 3 .IP APOP Use POP3 with MD5 authentication. .IP KPOP -POP3 with Kerberos authentication. +Use POP3 with Kerberos authentication on port 1109. .RE .TP .B \-P, --port @@ -123,6 +123,15 @@ The option permits you to specify a TCP/IP port to connect on. This option will seldom be necessary as all the supported protocols have well-established default port numbers. .TP +.B \-A, --auth +This option permits you to specify an authentication type (see USER +AUTHENTICATION below for details). The possible values are +\&`\fBpassword\ffR and `\fBkerberos\fR'. This option is provided +primarily for developers; choosing KPOP protocol automatically selects +Kerberos authentication, and all other alternatives use ordinary +password authentication (though APOP uses a generated one-time +key as the password). +.TP .B \-r folder, --remote folder Causes a specified non-default mail folder on the mailserver to be retrieved. The syntax of the folder name is server dependent, as is the default @@ -178,7 +187,7 @@ on the command line, each server in your .I ~/.fetchmailrc file will be queried. .SH USER AUTHENTICATION -User authentication in +Normal user authentication in .I fetchmail is very much like the authentication mechanism of .I ftp(1). @@ -230,6 +239,11 @@ file. Each time logs in, it sends a cryptographically secure hash of your password and the server greeting time to the server, which can verify it by checking its authorization database. +.PP +If your \fIfetchmail\fR was built with Kerberos support and you specify +Kerberos authentication (either with --auth or the \fI.fetchmailrc\fR +option \fBauthenticate kerberos\fR) it will try to get a Kerberos +ticket from the mailserver at the start of each query. .SH DAEMON MODE The .B --daemon @@ -339,6 +353,7 @@ Legal server options are: port skip noskip + authenticate (or auth) Legal user options are @@ -387,6 +402,17 @@ Legal protocol identifiers are imap (or IMAP) apop (or APOP) kpop (or APOP) + +.PP +Legal authentication types are `password' or `kerberos'. The former +specifies authentication by normal transmission of a password (the +password may be plaintext or subject to protocol-specific encryption +as in APOP); the second tells \fIfetchmail\fR to try to get a Kerberos +ticket at the start of each query instead, and send an arbitrary +string as the password. +.PP +Specifying \fBkpop\fR sets POP3 protocol over port 1109 with Kerberos +authentication. These defaults may be overridden by later options. .PP You can use the `noise' keywords \fBand\fR, \fBwith\fR, \fBhas\fR, \fBwants\fR, and \fBoptions\fR anywhere in an entry to make |