On Mon March 10 2008 6:18:58 am Guido Günther wrote:
> On Sun, Mar 09, 2008 at 08:32:47PM -0500, John Goerzen wrote:
> > Thanks much! Applied this to my git tree. Are there any new config
> > file options or any considerations to be documented? (I didn't see any
> > in my quick glance at it, but I always thought Kerberos would need some
> > of that stuff.)
>
> For gssapi you specifiy a remotehost, a remoteuser but no remotepass.
> If the user has a valid Kerberos TGT offlineimap will figure out the
> rest all by itself - and fall back to password authentication if needed.
> Cheers,
> -- Guido
OK. I have committed the attached diff to document this.
commit 0e0a2dec7b59fc9a20a82cf6f6667d6d7de27b15
Author: John Goerzen <[EMAIL PROTECTED]>
Date: Mon Mar 10 00:16:26 2008 -0500
Updated with Kerberos info
diff --git a/offlineimap.conf b/offlineimap.conf
index a5b15d1..e7b80a8 100644
--- a/offlineimap.conf
+++ b/offlineimap.conf
@@ -227,7 +227,7 @@ ssl = yes
# Specify the remote user name.
remoteuser = username
-# There are four ways to specify the password for the remote IMAP
+# There are five ways to give the password for the remote IMAP
# server:
#
# 1. No password at all specified in the config file. If a matching
@@ -255,6 +255,10 @@ remoteuser = username
#
# preauthtunnel = ssh -q imaphost '/usr/bin/imapd ./Maildir'
#
+# 5. If you are using Kerberos and have the Python Kerberos package installed,
+# you should not specify a remotepass. If the user has a valid
+# Kerberos TGT, OfflineIMAP will figure out the rest all by itself, and
+# fall back to password authentication if needed.
########## Advanced settings
