5 commits

Author	SHA1	Message	Date
Mechiel Lukkien	de435fceba	switch to math/rand/v2 in most places ... this allows removing some ugly instantiations of an rng based on the current time. Intn is now IntN for our concurrency-safe prng wrapper to match the randv2 api. v2 exists since go1.22, which we already require.	2024-11-29 13:45:19 +01:00
Mechiel Lukkien	8550a5af45	don't expose functions on the prng that aren't mutex-protected ... the current Intn calls in queue could be called concurrently, found by the race detector with upcoming new tests. best to just prevent any possible concurrent access.	2024-03-07 10:05:35 +01:00
Mechiel Lukkien	2535f351ed	fix bug with concurrent math/rand.Rand.Read ... firstly by using crypto/rand in those cases. and secondly by putting a lock around the Read (though it isn't used at the moment). found while working while implementing sending tls reports.	2023-11-09 17:17:26 +01:00
Mechiel Lukkien	e52c9d36a6	support cram-md5 authentication for imap and smtp ... and change thunderbird autoconfiguration to use it. unfortunately, for microsoft autodiscover, there appears to be no way to request secure password negotiation. so it will default to plain text auth. cram-md5 is less secure than scram-sha-*, but thunderbird does not yet support scram auth. it currently chooses "plain", sending the literal password over the connection (which is TLS-protected, but we don't want to receive clear text passwords). in short, cram-md5 is better than nothing... for cram-md5 to work, a new set of derived credentials need to be stored in the database. so you need to save your password again to make it work. this was also the case with the scram-sha-1 addition, but i forgot to mention it then.	2023-02-05 16:29:03 +01:00
Mechiel Lukkien	cb229cb6cf	mox!	2023-01-30 14:27:06 +01:00