search for: unsecured

Hi to all. Is it possible to disable unsecure POP3 protocol at all in Dovecot 2.1? There was "protocols" option in 1.x version, and there was separate pop3 and pop3s modules. There is no "pop3s" in configuration files in 2.1.

Hi, I try to set up dovecot as a proxy server, to proxy requests to several dovecot-based backend servers. I wand external clients who connects to this proxy Dovecot to use TLS (this is easy to set up) while want to have unsecured (plain IMAP/POP) connections to backends. You see, links to backends are over LAN so no TLS needed, and these backends are poor old machines (with old Docecots like 2.0.6) this is why I don't want to use TLS to acces backends. But as I did the test setup I can see proxy Dovecot uses TLS to co...

...;> > I try to set up dovecot as a proxy server, to proxy requests to > > >> > several dovecot-based backend servers. I wand external clients who > > >> > connects to this proxy Dovecot to use TLS (this is easy to set up) > > >> > while want to have unsecured (plain IMAP/POP) connections to > backends. > > >> > > > >> > You see, links to backends are over LAN so no TLS needed, and these > > >> > backends are poor old machines (with old Docecots like 2.0.6) this > is > > >> > why I don'...

I am trying to download a version of OpenSSH newer than the one preinstalled with my OS. But sadly I find that I can only download it through *unsecured* plain http/ftp/rsync protocol, vulnerable to attacks by anyone in the network path. It is odd that *the* software about security and encryption across untrusted network is distributed to everyone insecurely and not encrypted. Is there any future plan to distribute OpenSSH over secured channel, suc...

...proxy server, to proxy requests to > > > > >> > several dovecot-based backend servers. I wand external clients > who > > > > >> > connects to this proxy Dovecot to use TLS (this is easy to set > up) > > > > >> > while want to have unsecured (plain IMAP/POP) connections to > > > backends. > > > > >> > > > > > >> > You see, links to backends are over LAN so no TLS needed, and > these > > > > >> > backends are poor old machines (with old Docecots like 2.0.6) >...

...quests to > > > > > >> > several dovecot-based backend servers. I wand external clients > > who > > > > > >> > connects to this proxy Dovecot to use TLS (this is easy to set > > up) > > > > > >> > while want to have unsecured (plain IMAP/POP) connections to > > > > backends. > > > > > >> > > > > > > >> > You see, links to backends are over LAN so no TLS needed, and > > these > > > > > >> > backends are poor old machines (with old D...

On Tue, 18 Jun 2019 16:41:06 -0600 "@lbutlr via dovecot" <dovecot at dovecot.org> wrote: > What is the reason for wanting to enable CRAM-MD5? That was intended > to use on unsecured connections; you should not be allowing > authentication on unsecured connections in 2019. > > Establish a secure submission on port 587 or smtps on 465 and do not > use CRAM-MD5 at all. > Possibly a backwards compatibility thing? (eg: legacy mail settings migrating to a new dovec...

I am trying to run the CyberMegaPhone demo to see the WebRTC Video Conference demonstration from AstriDevCon 2017 I have been able to make WebRTC work on this same box with SIPML5 demo but not the CMP2K. When I attempt to access the https://myip:8089/cmp2k I am prompted for the unsecure web. I enable unsecure web. (Using the asterisk local certificate generation from the SIPML5 demo). After

...y to set up dovecot as a proxy server, to proxy requests to > > > >> > several dovecot-based backend servers. I wand external clients who > > > >> > connects to this proxy Dovecot to use TLS (this is easy to set up) > > > >> > while want to have unsecured (plain IMAP/POP) connections to > > backends. > > > >> > > > > >> > You see, links to backends are over LAN so no TLS needed, and these > > > >> > backends are poor old machines (with old Docecots like 2.0.6) this > > is > > &g...

Hello, Before writing here I really tried almost everything, reading the archives here, the FAQ and dozens of more or less well commented online guides and posts. My environment is a Windows server, with IIS as web server (I know, blame and flame on me, but this was available on my hands at the time). The server is hosting several websites and an icecast 2.4.4 running an online radio. The radio

Howdy, I'm using dovecot and mysql users, and i'm creating the password with: ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16))) So far so good, everything's fine. Today saw that i didn't enabled CRAM-MD5, but if I do, and the (at least) IMAP client (roundcube/thunderbird/etc) issues CRAM-MD5 it doesn't authenticate. What am i doing wrong, or

Speaking of GELI / GBDE. I was reading Marc's excellent paper on Complete harddrive encryption for FreeBSD using GBDE/GELI and the problem I have is it all depends on a bootable removable token that can by physically secured. While an excellent solution for laptop / desktop users it just doesn't work with a remote colo users. No way you can physically remove your unsecure boot token or

On 2017-04-25, 15:40, Andrew Bartlett via samba wrote: > This looks like the instructions: > https://social.technet.microsoft.com/wiki/contents/articles/2751.kerberos-interoperability-step-by-step-guide-for-windows-server-2003.aspx#Using_an_MIT_KDC_with_a_Stand-alone_Windows_Server_TwentyOhThree_Client Thanks Andrew! This is quiet useful info. > Also, you still have to create all the

Hello, I saw that OpenSSH release 6.7 removed all CBC ciphers by default. Is CBC therefore considered as broken and unsecure (in general or SSH implementation)? I also read a lot of references (see below) but still not clear to me what's the actual "security status" of CBC and why it has been removed in general. http://www.openssh.com/txt/release-6.7 sshd(8): The default set

On Wed, Sep 19, 2012 at 3:00 AM, Martinez, Javier E <javier.e.martinez at intel.com> wrote: > We have identified functions in LLVM sources using a static code analyzer > which are marked as a “security vulnerability”[1][2]. There has been work > already done to address some of them for Linux (e.g. snprintf). We are > attempting to solve this issue in a comprehensive fashion

This option was considered unsecure, found a fix on the generated opensuse images instead. --- customize/customize_run.ml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/customize/customize_run.ml b/customize/customize_run.ml index ad0ab7f..6cb2328 100644 --- a/customize/customize_run.ml +++ b/customize/customize_run.ml @@ -116,7 +116,7 @@ exec >>%s 2>&1

Hello, I'm having an issue with usage of libvirt driven qemu where I'm sharing directory with guest machine. virsh domain filesharing configuration: <filesystem type='mount' accessmode='passthrough'> <driver type='path' wrpolicy='immediate'/> <source dir='/media/share'/> <target dir='data'/>

Hi, I install centos 7.2 with kernel version of 3.10.0-327.36.4.el7.x86_64. Where to get its kernel source? Thanks! Regards andrew

Hi, I search the following link, and find some kernel source rpm files, such as kernel-3.10.0-327.36.3.el7.src.rpm. http://vault.centos.org/7.2.1511/updates/Source/SPackages/ But I can't find kernel-3.10.0-327.36.4.el7.src.rpm. Thanks! Regards Andrew At 2019-06-13 16:27:02, "Fabian Arrotin" <arrfab at centos.org> wrote: >On 13/06/2019 07:47, qw wrote:

...nd the (at least) > IMAP client (roundcube/thunderbird/etc) issues CRAM-MD5 it doesn't > authenticate. > What am i doing wrong, or that can be done so that all types work (SASL > PLAIN LOGIN + CRAM-MD5)? What is the reason for wanting to enable CRAM-MD5? That was intended to use on unsecured connections; you should not be allowing authentication on unsecured connections in 2019. Establish a secure submission on port 587 or smtps on 465 and do not use CRAM-MD5 at all. -- "Part of the inhumanity of the computer is that, once it is competently programmed and working smoothly, it...