Hi Matthias, Am Do 02. Okt 2025 13:19 +0200 schrieb Matthias Andree via Mutt-dev: >Thanks. Would you please share what SASL mechanism was affected? I am
All mechs, that require an initial response by the client. In case the IR already is included in the AUTH request (as done with the cyrus sasl implementation in mutt) there is no problem. If AUTH request is sent without IR (as done with the gnu sasl implementation in mutt), the server shall answer with an empty challenge. However some MS servers (e.g. exchange) does sent an invalid challenge, wich is not empty. And here is the problem. In my case it was GSSAPI. Affected is CRAM-MD5 and PLAIN, too. And prob. much more. However for PLAIN already was a hack present in mutt, so it is not affected in mutt. >wondering if I need this in fetchmail, too, but it does not currently use >external SASL providers but its own limited set of functions. I doubt, but have not tested yet. BTW. mutt works fine with imap and exchange. Only smtp is affected. -- Don't worry be happy ... Ciao Frank Reker
