IMAP mail, anyone?
[1/5] from: mario:cassani:icl at: 12-Dec-2001 13:53
Hi Rebolers,
my dummy windozed system administrators blocked the
pop3 access (a NTLM proxy wasn't enought...) to the
M$ Exchange mail server.
I am trying with IMAP, but can't even open the port:
>> open imap://user:[password--the--mailserver--net]/inbox
** User Error: No authentication method available
** Near: open imap://user:[password--the--mailserver--net]/inbox
>>
what's wrong? In our network there are two different domains
but I cannot try the other domain user/password because the
password actually contains a square bracket...
I cannot reach http://www.escribe.com/internet/rebol/
to search for IMAP, what I get is:
You are not authorized to view this page
You might not have permission to view this directory or page
using the credentials you supplied.
Any suggestion (but throwing the whole server on the heads
of the sysads)?
Thanks
Mario
[2/5] from: holger::rebol::com at: 12-Dec-2001 10:04
On Wed, Dec 12, 2001 at 01:53:51PM -0000, Cassani Mario wrote:
> Hi Rebolers,
> my dummy windozed system administrators blocked the
<<quoted lines omitted: 6>>
> >>
> what's wrong?
One of two things: either your username or password are incorrect,
or the server you are connecting to does not support any of the
official IMAP authentication standards REBOL supports (LOGIN
and CRAM-MD5), but only Microsoft-proprietary methods. To identify
the exact cause type
trace/net on
then try open the port.
Near the top of the Net-log output you should see a line such as
* OK [(some text) AUTH=CRAM-MD5 AUTH=LOGIN] hostname (some more text)
Check whether at least one of CRAM-MD5 or LOGIN is listed in the
AUTH options. If not, and if the server only supports, say,
AUTH=NTLM, then you will not be able to connect. You would have
to contact your sysadmin and ask them to enable standard authentication
protocols in the IMAP server. CRAM-MD5 is at least as secure as anything
ever coming out of Microsoft, so sysadmin really have no reason not to
allow it.
The other possibility, a wrong password, should be apparent in the
trace/net output as well, usually from a line such as
A1 NO AUTHENTICATE CRAM-MD5 failed
or
A1 NO AUTHENTICATE LOGIN failed
A potential third possibility is that your mail account has not been
set up for IMAP in general or for CRAM-MD5 yet. When switching from
POP to IMAP user accounts often have to be set up again and passwords
reentered to account for different password file formats.
> In our network there are two different domains
> but I cannot try the other domain user/password because the
> password actually contains a square bracket...
Yes, you can. Just open it using a port spec block instead of a URL,
e.g.
port: open [
scheme: 'imap
host: "imap.server.com"
user: "john"
pass: "secret"
]
--
Holger Kruse
[holger--rebol--com]
[3/5] from: doug:vos:eds at: 12-Dec-2001 15:39
rebol's IMAP looks rock-solid from here...
We are not having any problem running IMAP
against a MS$oft exchange email server... if that helps anyone.
-DV
[4/5] from: mario:cassani:icl at: 13-Dec-2001 8:34
Hi Holger,
thank you for the very interesting and detailed info.
Can you give some details on the next release of REBOL?
Do you plan to support NTLM on proxies and/or IMAP?
I'm posting the trace for completeness.
> One of two things: either your username or password are incorrect,
> or the server you are connecting to does not support any of the
> official IMAP authentication standards REBOL supports (LOGIN
> and CRAM-MD5), but only Microsoft-proprietary methods.
Unfortunately the latter!
> Near the top of the Net-log output you should see a line such as
> * OK [(some text) AUTH=CRAM-MD5 AUTH=LOGIN] hostname (some more text)
<<quoted lines omitted: 3>>
>> trace/net on
>> p: open imap://mario_cassani:[*********--ITALY51]/inbox
URL Parse: mario_cassani ********* ITALY51 none none inbox
Net-log: ["Opening" "tcp" "for" "IMAP"]
Net-log: {* OK Microsoft Exchange IMAP4rev1 server version 5.5.2653.23
(ITALY51) ready}
Net-log: "A1 CAPABILITY"
Net-log: {* CAPABILITY IMAP4 IMAP4rev1 IDLE LITERAL+ LOGIN-REFERRALS
MAILBOX-REFERRALS NAMESPACE AUTH=NTLM}
Net-log: "A1 OK CAPABILITY completed."
Net-log: "A2 LOGIN mario_cassani *********"
Net-log: "A2 NO You do not have permission to log on."
** User Error: No authentication method available
** Near: p: open imap://mario_cassani:[*********--ITALY51]/inbox
>>
> to contact your sysadmin and ask them to enable standard
<<quoted lines omitted: 3>>
> ever coming out of Microsoft, so sysadmin really have no reason not to
> allow it.
There was no reason to close POP3 too, on a mailserver accepting
users only from the intranet! Well, worth trying to ask...
Zaijian
Mario
[5/5] from: holger:rebol at: 13-Dec-2001 9:18
On Thu, Dec 13, 2001 at 08:34:46AM -0000, Cassani Mario wrote:
> Hi Holger,
> thank you for the very interesting and detailed info.
>
> Can you give some details on the next release of REBOL?
> Do you plan to support NTLM on proxies and/or IMAP?
Yes, but only in /Command, because Microsoft's password hash requires
DES encryption and other functions that are only available in
/Command.
--
Holger Kruse
[holger--rebol--com]
Notes
- Quoted lines have been omitted from some messages.
View the message alone to see the lines that have been omitted