Hello,
On Tue, 16 Aug 2011 10:55:18 +0200 Jernej Porenta wrote:
we are expiriencing issues with latest Apple Mail (OS
X Lion) and
perdition 1.19-rc4. The problem (as it seems) lies in Apple Mail way of
using AUTHENTICATE PLAIN with perdition.
Currently still using an older version of perdition on the production
servers here...
The log from Apple mail shows:
READ Aug 14 21:00:09.405 [kCFStreamSocketSecurityLevelNegotiatedSSL] --
host:imap_host -- port:993 -- socket:0x7fb51fc20b60 --
thread:0x7fb51f125e10
* OK [CAPABILITY IMAP4 AUTH=LOGIN LITERAL+ IMAP4REV1] perdition ready on
imap_host 0002b2fb
WROTE Aug 14 21:00:09.413 [kCFStreamSocketSecurityLevelNegotiatedSSL]
-- host:imap_host -- port:993 -- socket:0x7fb51fc20b60 --
thread:0x7fb51fb448e0 1.219 AUTHENTICATE LOGIN
READ Aug 14 21:00:09.437 [kCFStreamSocketSecurityLevelNegotiatedSSL] --
host:imap_host -- port:993 -- socket:0x7fb51fc20b60 --
thread:0x7fb51fb448e0 1.219 NO AUTHENTICATE mechanism not supported, mate
I know that there are some issues with latest Apple Mail
(
http://goo.gl/RmCGc), but I am unable to resolve them.
Does anyone of you have a similar case and knows how to resolve it? I
have tried to change the imap_capability, but it does not resolve the
issue.
This is rather strange, because we fixed that problem by removing
AUTH=PLAIN from the capabilities string, which had no place being there in
the first place (cut and paste from the dovecot capabilities).
Note that the apple mail client tries to use this even when SASL itself
was not announced, somebody taking mighty big liberties with the RFC at
apple there.
You will likely want to remove that AUTH=LOGIN capability and reload
perdition.
For what it's worth, this seems to work for us right now with a dovecot
1.2 backend, note the absence of all AUTH bits:
imap_capability IMAP4 IMAP4rev1 LITERAL+ ID ENABLE SORT
SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE
UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN
CONTEXT=SEARCH LIST-STATUS QUOTA STARTTLS
Regards,
Christian
--
Christian Balzer Network/Systems Engineer
chibi(a)gol.com Global OnLine Japan/Fusion Communications
http://www.gol.com/