sieve with tls sasl mech list empty
Jorey Bump
list at joreybump.com
Tue Sep 12 08:17:21 EDT 2006
Rudy Gevaert wrote:
> mailadm at chestnut:/tmp$ telnet mail2.ugent.be sieve
> Trying 157.193.71.18...
> Connected to mail2.ugent.be.
> Escape character is '^]'.
> "IMPLEMENTATION" "Cyrus timsieved v2.3.7"
> "SIEVE" "comparator-i;ascii-numeric fileinto reject vacation imapflags
> notify envelope relational regex subaddress copy"
> "STARTTLS"
> OK
>
> As you can see, timsieved doesn't list "SASL" "PLAIN" like it should,
> thus when using managesieve I get the error
>
> sasl mech list empty
Isn't the whole point of enforcing STARTTLS to prevent the advertising
of plaintext mechanisms? If sieved is like any other daemon, it won't
show these options until after the TLS session is initiated. You know
it's working because, well, it works, but you can also run tcpdump to
ensure that it's actually being encrypted (you'll see gibberish).
I don't actually use sieve, but maybe managesieve has a -tls option,
like the one recently added to cyradm.
More information about the Info-cyrus
mailing list