Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Get ready for 6.4.22.rc2. | Matthias Andree | 2021-08-27 | 1 | -2/+3 |
| | |||||
* | Add CVE ID; revise TLS docs & fetchmail-SA-2021-02 | Matthias Andree | 2021-08-27 | 1 | -48/+41 |
| | |||||
* | SECURITY: POP3: changes for --auth ssh and RPA | Matthias Andree | 2021-08-26 | 1 | -11/+21 |
| | | | | | These no longer defeat STARTTLS negotiation, and RPA is only attempted with --auth any. | ||||
* | SECURITY: IMAP: --auth ssh no longer prevents STARTTLS | Matthias Andree | 2021-08-26 | 1 | -7/+15 |
| | |||||
* | SECURITY: IMAP: PREAUTH->abort if STARTTLS needed | Matthias Andree | 2021-08-26 | 1 | -0/+117 |
On --sslproto auto (or other nonempty values), when receiving IMAP PREAUTH state, abort the connection, rather than continuing with cleartext. --ssl is unaffected because it always negotiates TLS. See fetchmail-SA-2021-02.txt for details. |