Thanks for tips! But this is only workarounds. My problem is solved with stunnel, but I have another question) "rimap" couldn't support tls by design or this can be a feature of some next release?
2014-02-12 18:40 GMT+04:00 Dan White <dwh...@olp.net>: > On 02/12/14 13:08 +0400, Boris Savelev wrote: > >> Hello! >> >> Today I try to configure saslauthd with MECHANISMS="rimap". >> I run saslauthd with command: >> /usr/sbin/saslauthd -a rimap -O mail.local -r -c -m /var/run/saslauthd -n >> 5 >> I use Dovecot 2 as IMAP server where plain-text auth via unencrypted >> channel doesn't allowed by default and turning it on is makes security >> hole. How I could configure saslauthd to use TLS/SSL with rimap? >> >> PS: >> saslauthd -v >> saslauthd 2.1.25 >> authentication mechanisms: sasldb getpwent kerberos5 pam rimap shadow ldap >> > > The rimap backend does not appear to support TLS, nor SASL (digest-md5) > authentication towards the IMAP server. stunnel (in client mode) may be a > work around for you. > > -- > Dan White > -- Boris
