Opened 7 years ago

Closed 7 years ago

#9488 closed (wontfix)

Add setting to force plain SMTP authentication

Reported by: jdemoor Owned by: nobody
Component: Core (Mail) Version: 1.0
Severity: Keywords: authentication email smtp
Cc: Triage Stage: Unreviewed
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: UI/UX:

Description

A wrongly configured SMTP server that requires authentication can advertise CRAM-MD5 as an accepted authentication method but fail when the client tries to use it. Most email clients would try other methods after the failure, but Python's smtplib just raises SMTPAuthException. This makes sending emails from Django with such servers impossible.

The attached patch adds the EMAIL_FORCE_PLAIN_AUTH setting which, if True, forces the use of the PLAIN method in django.core.mail.SMTPConnection.open().

Attachments (1)

plain_auth.diff (2.2 KB) - added by jdemoor 7 years ago.

Download all attachments as: .zip

Change History (2)

Changed 7 years ago by jdemoor

comment:1 Changed 7 years ago by jacob

  • Needs documentation unset
  • Needs tests unset
  • Patch needs improvement unset
  • Resolution set to wontfix
  • Status changed from new to closed

I don't like adding more code to Django just to work around other broken behavior; we can't be responsible for all the problems in other people's code. In this case, we're talking *both* a misconfigured SMTP server *and* a problem with smtplib.

Note: See TracTickets for help on using tickets.
Back to Top