aboutsummaryrefslogtreecommitdiffstats
path: root/pop3.c
Commit message (Collapse)AuthorAgeFilesLines
* Strengthen APOP a bit (validate RFC-822 syntax) in order to fend offMatthias Andree2007-03-181-0/+14
| | | | | | Leurent-style MITM attacks which are based on MD5 and APOP weaknesses. svn path=/branches/BRANCH_6-3/; revision=5057
* Repoll immediately if a protocol error happens during the authenticationMatthias Andree2007-03-021-1/+2
| | | | | | | attempt after a failed opportunistic TLS upgrade. Gentoo Bug #163782 comment #9, reported by Takuto Matsuu. svn path=/branches/BRANCH_6-3/; revision=5044
* Fix 6.3.6 regression: repoll upon socket error after STLS failure.Matthias Andree2007-02-031-11/+12
| | | | | | Berlios Bug #10133, reported by Andrej Kacian. svn path=/branches/BRANCH_6-3/; revision=5022
* Do not send the real password with KPOP.Matthias Andree2007-02-021-5/+15
| | | | svn path=/branches/BRANCH_6-3/; revision=5021
* Add Miloslav Trmac's patch to fix KPOP regression in 6.3.6.Matthias Andree2007-02-021-1/+5
| | | | svn path=/branches/BRANCH_6-3/; revision=5020
* Fix bogus authentication failure with --auth password when CAPA fails.Matthias Andree2006-11-291-9/+13
| | | | svn path=/branches/BRANCH_6-3/; revision=4976
* - mark CAPA as done even if it failsMatthias Andree2006-11-271-24/+46
| | | | | | | | | | | - do not override strong authenticators to PASSWORD if CAPA fails - let TLS code cater for failing CAPA (and break the connection if TLS is mandatory, but CAPA fails) - prevent USER/PASS authentication if other authenticators are configured - trash shroud store after use svn path=/branches/BRANCH_6-3/; revision=4970
* Plug a tiny memory leak when recovering from TLS-related socket errors.Matthias Andree2006-11-271-0/+1
| | | | svn path=/branches/BRANCH_6-3/; revision=4969
* Enshroud RPOP password in local logs.Matthias Andree2006-11-271-1/+5
| | | | svn path=/branches/BRANCH_6-3/; revision=4967
* Be sure that CAPA is probed before TLS.Matthias Andree2006-11-261-1/+15
| | | | | | | Needed to avoid bogus login failures if the upstream offers STLS. Patch by Isaac Wilcox. svn path=/branches/BRANCH_6-3/; revision=4963
* First step towards really fixing TLS vuln, CVE-2006-5867, still incomplete.Matthias Andree2006-11-261-52/+52
| | | | svn path=/branches/BRANCH_6-3/; revision=4962
* Fix TLS issue: fail if sslfingerprint, sslproto tls1 or sslcertck are ↵Matthias Andree2006-11-121-53/+58
| | | | | | configured and STARTTLS fails. Only by omitting all of these options, fetchmail will try opportunistic TLS. svn path=/branches/BRANCH_6-3/; revision=4929
* Snapshot 6.3.6-rc1.Matthias Andree2006-11-011-3/+11
| | | | svn path=/branches/BRANCH_6-3/; revision=4925
* Add IMAP AUTH=EXTERNAL support. BerliOS Patch #1095.Matthias Andree2006-08-141-2/+2
| | | | | | | Courtesy of Götz 'nimrill' Babin-Ebell. This patch also makes --sslproto arguments case insensitive. svn path=/branches/BRANCH_6-3/; revision=4896
* Log opportunistic TLS upgrades in verbose mode.Matthias Andree2006-08-071-7/+11
| | | | svn path=/branches/BRANCH_6-3/; revision=4881
* POP3: some UID flags may not be set properly on UIDL lists. (Sunil Shetye)Matthias Andree2006-05-241-1/+2
| | | | svn path=/branches/BRANCH_6-3/; revision=4852
* Revise comments.Matthias Andree2006-05-151-2/+2
| | | | svn path=/branches/BRANCH_6-3/; revision=4841
* Mark SF Bug #780933.Matthias Andree2006-04-031-2/+15
| | | | svn path=/branches/BRANCH_6-3/; revision=4776
* More warning fixes (from FreeBSD 6.1).Matthias Andree2006-03-251-0/+2
| | | | svn path=/branches/BRANCH_6-3/; revision=4753
* Further cleanups to compile with C++ compiler.Matthias Andree2006-03-151-1/+9
| | | | svn path=/branches/BRANCH_6-3/; revision=4744
* Fix more compiler warnings.Matthias Andree2006-03-141-5/+7
| | | | svn path=/branches/BRANCH_6-3/; revision=4736
* merge Mirek's fetchmail-signed.patchMatthias Andree2006-03-141-3/+3
| | | | svn path=/branches/BRANCH_6-3/; revision=4734
* Rename a methods and some variables to steer clear of C++ namespace.Matthias Andree2006-03-131-23/+23
| | | | svn path=/branches/BRANCH_6-3/; revision=4733
* Add comments to make the LAST/UIDL code easier to understand.Matthias Andree2006-03-041-5/+11
| | | | svn path=/branches/BRANCH_6-3/; revision=4721
* Allow UIDL recording in fetchall keep mode, to avoid re-fetching messages on ↵Matthias Andree2006-03-041-1/+2
| | | | | | subsequent polls without fetchall. Patch by Sunil Shetye. svn path=/branches/BRANCH_6-3/; revision=4720
* Preliminary UNTESTED workaround for SDPS null envfrom (Debian Bug#353575).Matthias Andree2006-02-221-1/+7
| | | | svn path=/branches/BRANCH_6-3/; revision=4694
* Clarify Maillennium workaround warning even more (...instead of TOP).Matthias Andree2006-01-171-1/+1
| | | | svn path=/branches/BRANCH_6-3/; revision=4645
* Change Maillennium warning to put the server's name into quote marks.Matthias Andree2006-01-171-1/+1
| | | | svn path=/branches/BRANCH_6-3/; revision=4643
* Remove excess set_peek_capable() call.Matthias Andree2006-01-081-27/+26
| | | | | | | | Move Maillennium check to before authentication checks to ALWAYS run it. Fix operator precedence bug introduced with adding the "print once" feature and that suppressed the warning. svn path=/branches/BRANCH_6-3/; revision=4614
* Revise Maillennium workaround so that it is reported only once per server, ↵Matthias Andree2006-01-071-3/+20
| | | | | | in daemon mode. svn path=/branches/BRANCH_6-3/; revision=4613
* Add workaround for b0rked POP3 TOP command in Maillennium servers (comcast.net).Matthias Andree2006-01-061-0/+6
| | | | svn path=/branches/BRANCH_6-3/; revision=4606
* Revise some error messages so they are less confusing. Sunil Shetye.Matthias Andree2005-11-101-1/+1
| | | | svn path=/trunk/; revision=4401
* Global variable cleanup, to fix daemon mode reinitialization problems.Matthias Andree2005-10-211-15/+22
| | | | | | Patch by Sunil Shetye. svn path=/trunk/; revision=4362
* Complain in POP3 if NTLM/MSN auth is requested but not built in.Matthias Andree2005-09-261-0/+6
| | | | svn path=/trunk/; revision=4342
* Make SSL connection failures PS_SOCKET (not PS_AUTHFAIL). Reported by Thomas ↵Matthias Andree2005-09-211-1/+1
| | | | | | Wolff. svn path=/trunk/; revision=4314
* Expunge between IMAP folders when polling multiple folders. Sunil Shetye.Matthias Andree2005-09-211-0/+1
| | | | | | Fix IMAP expunged message counting. Sunil Shetye. svn path=/trunk/; revision=4301
* Fix "auth ntlm" to send AUTH NTLM (rather than AUTH MSN). Add "auth msn".Matthias Andree2005-09-201-15/+11
| | | | svn path=/trunk/; revision=4297
* Remove port/service dualism and make everything a service.Matthias Andree2005-08-021-9/+0
| | | | svn path=/trunk/; revision=4219
* Add comment.Matthias Andree2005-07-311-1/+3
| | | | svn path=/trunk/; revision=4206
* Kill alloca().Matthias Andree2005-07-311-2/+2
| | | | svn path=/trunk/; revision=4199
* strcpy -> strlcpy, strcat -> strlcatMatthias Andree2005-07-301-1/+1
| | | | svn path=/trunk/; revision=4186
* If UIDL parser fails, barf with PS_ERROR rather than ignoring the problem.Matthias Andree2005-07-221-2/+3
| | | | svn path=/trunk/; revision=4163
* Blank skipping in UIDL code would count spaces from the wrong string.Matthias Andree2005-07-221-1/+2
| | | | svn path=/trunk/; revision=4161
* Fix NULL dereference when Message-ID or actual UID are missing from input.Matthias Andree2005-07-221-8/+18
| | | | | | | Reported by Miloslav Trmac. Re-add got_it to Message-Id parser so we use the first, not the last Message-ID. svn path=/trunk/; revision=4157
* Add a preprocessor safeguard to prevent buffer underrun.Matthias Andree2005-07-201-0/+3
| | | | svn path=/trunk/; revision=4146
* SECURITY FIX: Plug UID-related buffer overruns that came from sscanf(s, ↵Matthias Andree2005-07-201-35/+67
| | | | | | ...%s..., s2). svn path=/trunk/; revision=4143
* Skip sending POP3 PASS command when USER command failed.Matthias Andree2005-07-101-1/+2
| | | | svn path=/trunk/; revision=4107
* Factor out peek_capable determination into a static function, for consistency.Matthias Andree2005-05-161-9/+19
| | | | | | | Simplify the expression a bit so it's easier to read. Enhance peek_capable and TOP vs. RETR source code comments. svn path=/trunk/; revision=4057
* Revised "POP3 strong authentication fixes." that esr put into release 3873Matthias Andree2005-03-191-2/+1
| | | | | | | on 2004-01-13 07:02:39Z, it would loop infinitely when CAPA failed. Reported by David Greaves. svn path=/trunk/; revision=4027
* sprintf -> snprintfMatthias Andree2004-11-121-2/+2
| | | | svn path=/trunk/; revision=4005