From fb1adf19fff231ee8f55c15cf7866ca5319043db Mon Sep 17 00:00:00 2001 From: Matthias Andree Date: Wed, 29 Nov 2006 22:05:16 +0000 Subject: Detail on missing CAPA probes. svn path=/branches/BRANCH_6-3/; revision=4978 --- fetchmail-SA-2006-02.txt | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) (limited to 'fetchmail-SA-2006-02.txt') diff --git a/fetchmail-SA-2006-02.txt b/fetchmail-SA-2006-02.txt index 3d7f2387..1704512f 100644 --- a/fetchmail-SA-2006-02.txt +++ b/fetchmail-SA-2006-02.txt @@ -58,8 +58,9 @@ V2. Even with "sslproto tls1" in the config, fetches would go ahead V3. POP3 fetches could completely ignore all TLS options whether available or not because it didn't reliably issue CAPA before - checking for STLS support, and it would only try STLS if it had seen - the server's advertisement. + checking for STLS support - but CAPA is a requisite for STLS. + Whether or not CAPAbilities were probed, depended on the "auth" + option. V4. POP3 could fall back to using plain text passwords, even if strong authentication had been configured. -- cgit v1.2.3