~ubuntu-branches/ubuntu/trusty/mpop/trusty

« back to all changes in this revision

Viewing changes to doc/mpop.texi

Committer: Package Import Robot
Author(s): Emmanuel Bouthenot
Date: 2011-10-30 09:39:07 UTC
mfrom: (1.1.11) (3.1.12 sid)
Revision ID: package-import@ubuntu.com-20111030093907-l1t8njqeqkdo44kf

Tags: 1.0.25-2

Switch debhelper compat to v9

files added:
debian/source.lintian-overrides

files modified:
ChangeLog

NEWS

aclocal.m4

configure

configure.ac

debian/changelog

debian/compat

debian/control

debian/copyright

debian/rules

doc/mpop.1

doc/mpop.info

doc/mpop.texi

doc/stamp-vti

doc/version.texi

po/de.gmo

po/de.po

po/mpop.pot

scripts/vim/mpop.vim

src/Makefile.am

src/Makefile.in

src/mpop.c

src/pop3.c

Show diffs side-by-side

added added

removed removed

doc/mpop.texi

190

This command chooses the POP3 authentication method. With the argument

191

@samp{on}, mpop will choose the best one available for you (see below). This is

192

the default. Accepted methods are @samp{user}, @samp{apop}, @samp{plain},

193

@samp{cram-md5}, @samp{digest-md5}, @samp{scram-sha-1}, @samp{gssapi},

193

@samp{scram-sha-1}, @samp{cram-md5}, @samp{gssapi}, @samp{digest-md5},

194

@samp{external}, @samp{login}, and @samp{ntlm}.

195

@xref{Authentication}.@*

196

@anchor{user}

789

This authentication method needs a user name and a password.

790

The authentication data is not sent in plain text, but APOP is vulnerable to

791

man-in-the-middle attacks. This method should not be used unless TLS is active.

792

@item @samp{SCRAM-SHA-1}@*

793

This authentication method needs a user name and a password.

794

The authentication data is not sent in plain text, which means this method can

795

safely be used without TLS.

792

796

@item @samp{CRAM-MD5}@*

793

This authentication method needs a user name and a password.

794

The authentication data is not sent in plain text, which means this method can

795

safely be used without TLS.

796

@item @samp{DIGEST-MD5}@*

797

This authentication method needs a user name and a password.

798

The authentication data is not sent in plain text, which means this method can

799

safely be used without TLS.

800

@item @samp{SCRAM-SHA-1}@*

801

797

This authentication method needs a user name and a password.

802

798

The authentication data is not sent in plain text, which means this method can

803

799

safely be used without TLS.

818

814

Note: (SMTP) Sendmail 8.12.11 advertises the EXTERNAL mechanism only after a

819

815

TLS client certificate has been send. It seems to ignore the optional user

820

816

name. Does anyone know more about this?

817

@item @samp{DIGEST-MD5}@*

818

This is an obsolete authentication method needs a user name and a password.

819

The authentication data is not sent in plain text, but the encryption based on

820

MD5 is not considered secure anymore.

821

@item @samp{LOGIN}@*

822

This is a non-standard authentication method similar to (but worse than) PLAIN.

823

It needs a user name and a password, both of which are send in BASE64 encoding,

857

If mpop chooses the method itself, it will never choose an insecure method.

858

If TLS is active, all methods are considered secure in this context, because the

859

connection to the server is protected by TLS. If TLS is not active, only the

860

CRAM-MD5, DIGEST-MD5, SCRAM-SHA-1, and GSSAPI methods are considered secure in

860

SCRAM-SHA-1, CRAM-MD5, and GSSAPI methods are considered secure in

861

this context, because all the others methods put the authentication data at

862

risk.

863

Older »