Using user_deny.db
Michael Sofka
sofkam at rpi.edu
Tue Sep 19 11:31:37 EDT 2017
On 09/19/2017 10:28 AM, Ken Murchison wrote:
>> I believe that is it prior to authentication, based on my notes:
>>
>> https://lists.andrew.cmu.edu/pipermail/info-cyrus/2010-June/033119.html
>
> user_deny.db is NOT checked prior to completion of LOGIN authentication,
> although it probably could/should. It works for POP3 USER/PASS because
> user_deny.db is checked in the command processing loop, so it happens
> between the USER and PASS commands.
Oh well. I agree that it would be a useful check before login
authentication takes place.
Meanwhile, any more comprehensive examples or documentation?
Thank You,
Mike
--
Michael D. Sofka sofkam at rpi.edu
ITI Sr. Systems Programmer, Email, TeX, Epistemology
Rensselaer Polytechnic Institute, Troy, NY. http://www.rpi.edu/~sofkam/
More information about the Info-cyrus
mailing list