OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: SMTP Web Authentication [OT]
From: Bennett Todd (betrahul.net)
Date: Wed Mar 22 2000 - 12:22:59 CST

2000-03-22-12:07:08 Admin Mailing Lists:
> > Oof. Both POP3 and IMAP can be tunneled over SSL, or can (in
> > the new protocol extensions) use TLS inline. And both support
> > SASL authentication, which means you can do any kind of auth you
> > want.
>
> can this be accomplished in one form or another to return the
> client's ip in the pop3 daemon.

Depends. If the daemon (pop or imap) is linked against an SSL
library, then it should be able to get at the real original IP
address. This would be the case for the above-mentioned "new
protocol extensions [for using] TLS inline". For straight pop or
imap over SSL, implemented using an unmodified daemon with an
external helper like stunnel, the daemon would see localhost as the
origin for the connection. In principle a sufficiently brilliant
logwatcher could correlate log entries from stunnel with log entries
from the popd or imapd to assemble the complete picture, but so far
I at least haven't worked up the enthusiasm to try coding such a
gizmo.

> i think in ssh port forwarding you'll jsut get the localhost ip. :(

If you're using ssh port forwarding for imap or pop, then just use
the exact same ssh port forwarding for smtp as well:-). I do, and it
works _wonderfully_.

-Bennett

  • application/pgp-signature attachment: stored