[24641] in Kerberos

home help back first fref pref prev next nref lref last post

Re: Kerberos support in Thunderbird

daemon@ATHENA.MIT.EDU (Jim Alexander)
Wed Sep 14 14:34:00 2005

From: jalex@cis.upenn.edu (Jim Alexander)
Date: Mon, 12 Sep 2005 22:43:42 +0000 (UTC)
Message-ID: <dg50au$elr8$1@netnews.upenn.edu>
To: kerberos@mit.edu
Errors-To: kerberos-bounces@mit.edu

I meant to also add that I think it is generally considered bad form to
silently fall back to a weaker security mechanism when a stronger on
fails. I want to be able to configure my mail client to use GSSAPI,
and if it fails, I want to be told that it failed, not fall back
and perhaps successfully authenticate using CRAM-MD5, leaving me without
a clue that my chosen auth method is not working.

As a side note, should we be opening new bugs in bugzilla for this, or
maybe reopen bug 303160? Or is hashing it out here completely sufficient
for now?


-- 

________ Jim Alexander __________________ jalex@cis.upenn.edu ________________
I have yet to see a problem, however complicated, which, when you looked at it
in the right way, did not become still more complicated.      -- Poul Anderson
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post