Message 223327 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	zvyn
Recipients	barry, jesstess, loewis, pitrou, r.david.murray, zvyn
Date	2014-07-17.10:31:03
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1405593063.6.0.440580833955.issue21935@psf.upfronthosting.co.za>
In-reply-to

Content
My interpretation of this paragraph is the following (English is not my native language so please correct me if I'm wrong): The requirement is to provide a configuration where plain auth is disabled if password snooping would be possible otherwise not to forbid such configurations generally. An admin SHOULD provide security measures to prevent password snooping. Setting enable_AUTH=False is a configuration where plain authentication is not permitted. The admin should provide a STARTTLS (or any other encrypted) tunnel if enabling AUTH (stunnel would be a common solution on Linux). Maybe we should explicitly mention that in the docs?

My interpretation of this paragraph is the following (English is not my native language so please correct me if I'm wrong):
The requirement is to provide a configuration where plain auth is disabled if password snooping would be possible otherwise not to forbid such configurations generally. An admin SHOULD provide security measures to prevent password snooping. 

Setting enable_AUTH=False is a configuration where plain authentication is not permitted. The admin should provide a STARTTLS (or any other encrypted) tunnel if enabling AUTH (stunnel would be a common solution on Linux).

Maybe we should explicitly mention that in the docs?

History
Date	User	Action	Args
2014-07-17 10:31:03	zvyn	set	recipients: + zvyn, loewis, barry, pitrou, r.david.murray, jesstess
2014-07-17 10:31:03	zvyn	set	messageid: <1405593063.6.0.440580833955.issue21935@psf.upfronthosting.co.za>
2014-07-17 10:31:03	zvyn	link	issue21935 messages
2014-07-17 10:31:03	zvyn	create