#1901 new

Auth-Method Settings

Reported by matthias | December 31st, 2017 @ 04:32 AM

I can't see how to set the authentification method.
According my logs MailMate uses the most primitive one (Plain) instead of a more secure one.

Comments and changes to this ticket

  • benny

    benny January 3rd, 2018 @ 01:48 PM

    Well, MailMate also supports CRAM-MD5 (preferring this if it's available).

    Which authentication method were you looking for?

    (You should of course always ensure that SSL is enabled -- for many other reasons than the login itself.)

  • matthias

    matthias January 4th, 2018 @ 12:33 AM

    Hello Benny,
    yes I was looking for CRAM-MD5 and/or Kerberos, but as I can see from the logs, MailMate always uses PLAIN on my server (don't know for google).
    SSL is of course enabled, login without SSL/TLS is not allowed at my server (MacOS 10.11 Server with Postfix).

  • benny

    benny January 8th, 2018 @ 02:29 PM

    Do you see MailMate use PLAIN even if the server supports CRAM-MD5? This should only happen if CRAM-MD5 fails (which it unfortunately does for at least 1 buggy server).

  • matthias

    matthias January 9th, 2018 @ 05:02 AM

    I'm just wondering, after checking again today, now it says:
    imap-login: xxx: Login: user=, method=CRAM-MD5, rip=, lip=, mpid=582, TLS
    which looks good.
    However, when I wrote that posting, it always said "PLAIN".

    To which "buggy" server are you referring to?
    MacOS Server uses Dovecot since some time and it works better then Cyrrus to my experience.
    With a pure Mac-Environment maybe the best choice would be Kerberos, but yes, I know, I made some mixed experiences with that one.
    How's about a simple pull-down to at least define a preference of the user?

  • benny

    benny January 10th, 2018 @ 01:55 PM

    • State changed from “new” to “bluesky”

    I seem to have failed to note the name of the buggy server, but it was not a mainstream IMAP server. Dovecot should certainly be fine.

    There's no pull-down, but it is possible to force the authentication method used. You need to edit this file while MailMate is not running:

    ~/Library/Application Support/MailMate/Sources.plist

    Add the following to the account:

    authMechanism = "CRAM-MD5";

    I'll switch the ticket to “bluesky” since I'm unlikely to add more authentication methods in the foreseeable future.

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Mac OS X email client.

Shared Ticket Bins

People watching this ticket