On 3.11.2013, at 22.08, Timo Sirainen <[email protected]> wrote: > * Some usage of passdb checkpassword could have been exploitable by > local users. You may need to modify your setup to keep it working. > See http://wiki2.dovecot.org/AuthDatabase/CheckPassword#Security
Oh, forgot to mention here: This problem was found by the cPanel people (cPanel uses checkpassword). They also reserved CVE-2013-6171 for this. _______________________________________________ Dovecot-news mailing list [email protected] http://dovecot.org/cgi-bin/mailman/listinfo/dovecot-news
