search for: unsecurely

Displaying 20 results from an estimated 237 matches for "unsecurely".

Did you mean: insecurely
2013 Oct 28
2
Disable unsecure POP3 at all (Dovecot 2.1)
Hi to all. Is it possible to disable unsecure POP3 protocol at all in Dovecot 2.1? There was "protocols" option in 1.x version, and there was separate pop3 and pop3s modules. There is no "pop3s" in configuration files in 2.1.
2018 Sep 17
4
Proxy secured incoming POP3/IMAP4 to unsecure backend?
Hi, I try to set up dovecot as a proxy server, to proxy requests to several dovecot-based backend servers. I wand external clients who connects to this proxy Dovecot to use TLS (this is easy to set up) while want to have unsecured (plain IMAP/POP) connections to backends. You see, links to backends are over LAN so no TLS needed, and these backends are poor old machines (with old Docecots like
2018 Sep 17
0
Proxy secured incoming POP3/IMAP4 to unsecure backend?
Thank you! Ok, so I can omit ssl=no and startssl=no, and this results in default settings for ssl which is 'off'? Or the defaults are 'on' anyway? Can I somehow specify ports on remote hosts that proxy will use to connect to? Like (just image): 'proxy host_imap=10.1.1.1:143 host_pop=10.1.1.1:110' or somehow? On Mon, Sep 17, 2018 at 4:33 PM Aki Tuomi <aki.tuomi at
2014 Oct 12
5
Download OpenSSH through secure channel?
I am trying to download a version of OpenSSH newer than the one preinstalled with my OS. But sadly I find that I can only download it through *unsecured* plain http/ftp/rsync protocol, vulnerable to attacks by anyone in the network path. It is odd that *the* software about security and encryption across untrusted network is distributed to everyone insecurely and not encrypted. Is there any future
2018 Sep 17
0
Proxy secured incoming POP3/IMAP4 to unsecure backend?
Seen that URL but port= is strange due to there is no protocol connection. So if I set port=12345 then what proto will I see there? Misleading setting this is why I mentioned (non-existing) per-proto port setting above. May I please ask for any example on how to pass port per proto? It is a bit fuzzy for me to figure it out but I do believe you used to use it somehow. On Mon, Sep 17, 2018 at
2018 Sep 17
1
Proxy secured incoming POP3/IMAP4 to unsecure backend?
auth process receives the protocol requested when performing authentication as variable %s (see https://wiki2.dovecot.org/Variables) You can use this to choose the value you return for port. Aki > On 17 September 2018 at 16:56 Alexander Chekalin <alexander.chekalin at gmail.com> wrote: > > > Seen that URL but port= is strange due to there is no protocol connection. > So
2019 Jun 18
1
Help on CRAM-MD5
On Tue, 18 Jun 2019 16:41:06 -0600 "@lbutlr via dovecot" <dovecot at dovecot.org> wrote: > What is the reason for wanting to enable CRAM-MD5? That was intended > to use on unsecured connections; you should not be allowing > authentication on unsecured connections in 2019. > > Establish a secure submission on port 587 or smtps on 465 and do not > use CRAM-MD5 at
2019 Jan 04
2
CyberMegaPhone WebRTC Video Conference demo
I am trying to run the CyberMegaPhone demo to see the WebRTC Video Conference demonstration from AstriDevCon 2017 I have been able to make WebRTC work on this same box with SIPML5 demo but not the CMP2K. When I attempt to access the https://myip:8089/cmp2k I am prompted for the unsecure web. I enable unsecure web. (Using the asterisk local certificate generation from the SIPML5 demo). After
2018 Sep 17
3
Proxy secured incoming POP3/IMAP4 to unsecure backend?
The port is determined with port=nnn setting. You can't return per-protocol port like that, you need to look at the protocol requested by user and return port based on that, or you can omit port to default into "standard port". not using ssl/starttls is default. > On 17 September 2018 at 16:35 Alexander Chekalin <alexander.chekalin at gmail.com> wrote: > > >
2020 Apr 28
2
icecast, ssl, windows environment
Hello, Before writing here I really tried almost everything, reading the archives here, the FAQ and dozens of more or less well commented online guides and posts. My environment is a Windows server, with IIS as web server (I know, blame and flame on me, but this was available on my hands at the time). The server is hosting several websites and an icecast 2.4.4 running an online radio. The radio
2019 Jun 18
4
Help on CRAM-MD5
Howdy, I'm using dovecot and mysql users, and i'm creating the password with: ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16))) So far so good, everything's fine. Today saw that i didn't enabled CRAM-MD5, but if I do, and the (at least) IMAP client (roundcube/thunderbird/etc) issues CRAM-MD5 it doesn't authenticate. What am i doing wrong, or
2006 Mar 13
0
Complete GBDE / GELI encryption for systems without removable local boot tokens (aka USB drives)
Speaking of GELI / GBDE. I was reading Marc's excellent paper on Complete harddrive encryption for FreeBSD using GBDE/GELI and the problem I have is it all depends on a bootable removable token that can by physically secured. While an excellent solution for laptop / desktop users it just doesn't work with a remote colo users. No way you can physically remove your unsecure boot token or
2017 Apr 27
3
Samba authentication using non-AD Kerberos?
On 2017-04-25, 15:40, Andrew Bartlett via samba wrote: > This looks like the instructions: > https://social.technet.microsoft.com/wiki/contents/articles/2751.kerberos-interoperability-step-by-step-guide-for-windows-server-2003.aspx#Using_an_MIT_KDC_with_a_Stand-alone_Windows_Server_TwentyOhThree_Client Thanks Andrew! This is quiet useful info. > Also, you still have to create all the
2015 Jun 15
5
OpenSSH and CBC
Hello, I saw that OpenSSH release 6.7 removed all CBC ciphers by default. Is CBC therefore considered as broken and unsecure (in general or SSH implementation)? I also read a lot of references (see below) but still not clear to me what's the actual "security status" of CBC and why it has been removed in general. http://www.openssh.com/txt/release-6.7 sshd(8): The default set
2012 Sep 20
0
[LLVMdev] Handling of unsafe functions
On Wed, Sep 19, 2012 at 3:00 AM, Martinez, Javier E <javier.e.martinez at intel.com> wrote: > We have identified functions in LLVM sources using a static code analyzer > which are marked as a “security vulnerability”[1][2]. There has been work > already done to address some of them for Linux (e.g. snprintf). We are > attempting to solve this issue in a comprehensive fashion
2015 Oct 02
1
[PATCH] customize: remove zypper's gpg keys auto-import
This option was considered unsecure, found a fix on the generated opensuse images instead. --- customize/customize_run.ml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/customize/customize_run.ml b/customize/customize_run.ml index ad0ab7f..6cb2328 100644 --- a/customize/customize_run.ml +++ b/customize/customize_run.ml @@ -116,7 +116,7 @@ exec >>%s 2>&1
2019 Jul 16
1
filesharing file owner problem
Hello, I'm having an issue with usage of libvirt driven qemu where I'm sharing directory with guest machine. virsh domain filesharing configuration: <filesystem type='mount' accessmode='passthrough'> <driver type='path' wrpolicy='immediate'/> <source dir='/media/share'/> <target dir='data'/>
2019 Jun 13
2
where to get kernel source
Hi, I install centos 7.2 with kernel version of 3.10.0-327.36.4.el7.x86_64. Where to get its kernel source? Thanks! Regards andrew
2019 Jun 13
2
where to get kernel source
Hi, I search the following link, and find some kernel source rpm files, such as kernel-3.10.0-327.36.3.el7.src.rpm. http://vault.centos.org/7.2.1511/updates/Source/SPackages/ But I can't find kernel-3.10.0-327.36.4.el7.src.rpm. Thanks! Regards Andrew At 2019-06-13 16:27:02, "Fabian Arrotin" <arrfab at centos.org> wrote: >On 13/06/2019 07:47, qw wrote:
2019 Jun 18
0
Help on CRAM-MD5
On 18 Jun 2019, at 16:04, Jorge Bastos via dovecot <dovecot at dovecot.org> wrote: > I'm using dovecot and mysql users, and i'm creating the password with: > > ENCRYPT('some-passwd',CONCAT('$6$', SUBSTRING(SHA(RAND()), -16))) Why not just use the builtin tool in dovecot? doveadm pw -s SHA256-CRYPT -p ?password[goes]here!? (or SHA512-CRYPT in your case, I