#3556: No way to disable SASL authentication in IMAP
-------------------------------+--------------------------------------------
Reporter: analizer | Owner: mutt-dev
Type: defect | Status: new
Priority: major | Milestone:
Component: mutt | Version: 1.5.21
Keywords: patch, sasl, imap |
-------------------------------+--------------------------------------------
Comment(by xrgtn):
Hello,
I'd add some background info. Yandex has broken its IMAP authentication
between Dec 14 and 15. I don't know what happened but I suspect that their
server started to advertise AUTH=PLAIN in its CAPABILITIES since Dec
14/15, and it didn't advertise AUTH=PLAIN before.
So, mutt tries to do AUTHENTICATE PLAIN and fails:
4> a0003 AUTHENTICATE PLAIN^M
4< +
4> base64==^M
4< a0003 BAD command syntax error
Then mutt tries to continue with LOGIN and this seems to work, but then
yandex drops connection in response to SELECT command:
4> a0007 SELECT "INBOX"^M
tls_socket_read (A TLS packet with unexpected length was received.)
I didn't have much time to analyze OP's patch, but IMHO it breaks all
SASL-only user specified auth methods (set imap_authenticators="FOO:BAR"),
so that only GSSAPI/LOGIN will work.
I have another patch, which is currently being tested.
P.S. I have created bug report at yandex 2 weeks ago, but they are too
slow with their analysis of the problem.
--
WBR,
xrgtn
--
Ticket URL: <http://dev.mutt.org/trac/ticket/3556#comment:1>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
