From: Alex Zepeda (no email)
Date: Fri Feb 01 2008 - 14:33:09 EST
Victor Duchovni wrote:
> No Postfix (as of at least 2.2.0 which is the first official release
> that supports TLS) recomputes all EHLO features after STARTTLS. So your
> problem is elsewhere. Perhaps you don't have SASL "login" support in your
> Cyrus SASL library.
As in my original post, the server *returns a null auth list* before
TLS, and returns an auth indicating login support *after* TLS. If
Postfix is not recomputing (yay potential man in the middle attacks)
after TLS, then yes it's not a matter of what's been compiled in -- it's
looking at the 'wrong' features list.
Thanks anyhow, I'm using the stock Debian packages. I'd love to be in a
situation where fiddling with the source is an option. Unfortunately, I
guess it's time to evaluate other MTAs.
-- alex
|
|
|