Patch to set plaintext refusal string to plaintextloginalert (Bug 3247)
Jeroen van Meeuwen (Kolab Systems)
vanmeeuwen at kolabsys.com
Thu Aug 5 18:59:34 EDT 2010
Michael Bacon wrote:
> This week, we finally dragged UNC into the 21st century and disabled
> unencrypted plaintext logins. In so doing, we found the default message
> for rejecting unencrypted LOGIN attempts, "Login only available under a
> layer," to be confusing to our users.
> This patch just overloads "plaintextloginalert" to also be the reject
> message if allowplaintext is set to 0. It is otherwise only used if
> allowplaintext is set to 1.
> This is a patch to the 2.3.16 codebase, and is entered in Bugzilla as 3247.
I would obfuscate the original message less, by saying something like:
"Plaintext login not allowed, by policy, without added security layer"
As opposed to the message that is in there now. Would that make sense?
Jeroen van Meeuwen
Senior Engineer, Kolab Systems AG
e: vanmeeuwen at kolabsys.com
t: +316 42 801 403
pgp: 9342 BF08
More information about the Cyrus-devel