[Psi-devel] Some login/sasl questions for 0.11
Matthias Wimmer
m at tthias.eu
Sun Feb 4 14:00:31 PST 2007
Hi Remko!
... I'll later check again if the lock icon is still locked for only
integrity-protected connections.
Remko Tronçon schrieb:
>> I think we cannot disallow users to use plaintext login
>
> That was never the intention. The question was whether we should make
> a distinction of allowing plaintext over encrypted and non-encrypted
> streams, in order to give the user more control over his security.
> Now, it's all or nothing (unless you force SSL).
BTW: What about changing the force SSL setting to not force TLS but only
an encryption layer? I.e. also allowing non-TLS but DIGEST-MD5 in
auth-crypt mode.
Matthias
--
Matthias Wimmer Fon +49-700 77 00 77 70
Züricher Str. 243 Fax +49-89 95 89 91 56
81476 München http://ma.tthias.eu/
More information about the psi-devel
mailing list