129729 – net-mail/uw-mailutils-2004g needs ssl option; contacting imaps server fails

Bug 129729 - net-mail/uw-mailutils-2004g needs ssl option; contacting imaps server fails

Summary: net-mail/uw-mailutils-2004g needs ssl option; contacting imaps server fails

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High major (vote)
Assignee:	Net-Mail Packages

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2006-04-12 12:11 UTC by Erik Quaeghebeur
Modified:	2011-05-06 21:00 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
An untested modification of the ebuild to resolve the problem (uw-mailutils-2004g-equaeghe.ebuild,1.12 KB, application/octet-stream) 2006-04-24 14:04 UTC, Erik Quaeghebeur	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Erik Quaeghebeur 2006-04-12 12:11:07 UTC

In uw-mailutils-2004g.ebuild the option SSLTYPE=none is passed for the compilation.

This is the resultant emerge uw-mailutils-2004g output (i.e., warning message from compilation setup):
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ Building in NON-COMPLIANCE with RFC 3501 security requirements:
+ Non-compliant:
++ TLS/SSL encryption is NOT supported
++ Unencrypted plaintext passwords are permitted
+
+ In order to rectify this problem, you MUST build with:
++ SSLTYPE=nopwd
+ You must also have OpenSSL or equivalent installed.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

To make a backup of your an imaps (=imap over ssl) account, the command 

mailutil transfer "{www.example.com/ssl/novalidate-cert/user=login}" .

is all that is necessary. However, with the current ebuild, mailutil is compiled without ssl support, thus giving the following error:

Can't open mailbox {www.example.com/ssl/novalidate-cert/user=login}: invalid
remote specification

Justification of 'major' severity: As the majority of imap servers are imaps, this lack of ssl support could be considered a major bug.

Suggestion for correction: let the ebuild respond appropriately to the ssl use-flag by setting SSLTYPE=nopwd.

Related usenet post with reply from mailutil author:

http://groups.google.be/group/comp.mail.pine/browse_thread/thread/a92c36fd748d7e9f/0970c5ee5e46a4fd?tvc=2

Comment 1 Erik Quaeghebeur 2006-04-24 14:04:20 UTC

Created attachment 85382 [details]
An untested modification of the ebuild to resolve the problem

In the hope of getting this bug moving, I've created a modified ebuild.

I've taken the old ebuild, and added ssl to the IUSE list and modified the src_compile procedure to add a conditional on use ssl. If use sll then modified SSLTYPE=nopwd and removed the now useless invokation of yes; else do the old make command (with SSLTYPE=none). I did not modify the header.

This ebuild is untested (I am a total noob wrt ebuilds/overlays and such matters). I am willing to test it (possibly further modified) if it is in portage hard-masked (amd64 here, but that doesn't matter much).

Comment 2 DC 2009-12-28 06:34:22 UTC

There are also patches to handle SSL and PAM in http://bugs.gentoo.org/show_bug.cgi?id=276401. Should we merge these 2 bugs?

Comment 3 Eray Aslan gentoo-dev

2011-05-06 21:00:41 UTC

+*uw-mailutils-2007e-r1 (06 May 2011)
+
+  06 May 2011; Eray Aslan <eras@gentoo.org> +uw-mailutils-2007e-r1.ebuild,
+  +files/uw-mailutils-ssl.patch:
+  add pam and ssl USE flags - bugs 129729 276401
+