Displaying 2 results from an estimated 2 matches for "ipaddr_is_v4".
2006 Jun 29
3
Secure connection from "localhost" in jails
...> CLIENT_DESTROY_OLDEST_COUNT &&
hash_size(clients) >= max_logging_users) {
@@ -429,8 +429,10 @@
client->common.tls = ssl;
addr = net_ip2addr(ip);
+ local_addr = net_ip2addr(local_ip);
client->common.secured = ssl ||
(IPADDR_IS_V4(ip) && strncmp(addr, "127.", 4) == 0) ||
+ (IPADDR_IS_V4(ip) && strncmp(addr, local_addr,
strlen(local_addr)) == 0) ||
(IPADDR_IS_V6(ip) && (strcmp(addr, "::1") == 0 ||
strncmp(addr, &quo...
2005 Jan 25
1
disable_plaintext_auth, inetd, localhost, IPv6, and mapped addresses
Dovecot 0.99.13.
I've noticed that the condition
client->secured = ssl ||
(IPADDR_IS_V4(ip) && strncmp(addr, "127.", 4) == 0) ||
(IPADDR_IS_V6(ip) && strcmp(addr, "::1") == 0);
(in (imap-login|pop3-login)/client.c) isn't enough, at least not when
running from inetd. The thing is that you will come across
::ffff:127.0.0.1, which is secure, b...