Manualshelf

OmniMessaging Functional Description 8.3

ManualsBrandsHP ManualsServerHP NonStop G-Series
41424344454647484950
OmniMessaging Functional Description
07/22/04 Opsol Integrators Inc. Confidential and Proprietary Page 42 of 68
11.5 Security
11.5.1 POP Before SMTP Authentication
OmniMessaging provides support for POP Before SMTP Authentication. This is
an optional facility that is activated or deactivated by the POP_BEFORE_SMTP
system parameter.
If active, this facility only authorises SMTP sessions for which one of the
following is true:-
There is a current POP or IMAP session in existence from the same IP
address
There has been a POP or IMAP session from the same IP address
within a configured time period (POP_BEFORE_SMTP_PERIOD
system parameter)
If neither of the above criteria is met, the session is terminated.
11.5.2 Support for CRAM-MD5 Authentication Support
OmniMessaging has the capability to support the transmission of passwords via
plain text and via the use of an algorithm. This feature is implemented using
standard protocol commands.
The OmniMessaging IMAP server supports CRAM-MD5 authorisation via the
AUTHENTICATE command, whilst the POP server uses the APOP command.
11.5.3 Configurable Max Login Attempts
OmniMessaging allows the configuration of a maximum number of failed logins
for a valid user (MAX_LOGIN_ATTEMPTS System Parameter). Once this
number is exceeded, an administrator inactivates the user account, pending
reactivation.
11.5.4 Configurable Max Sessions Per User
OmniMessaging allows the configuration of a maximum number of POP and
IMAP sessions per user (MAX_SESSIONS_PER_USER System Parameter).
Once this number is reached, any further login requests (POP or IMAP) for the
user are rejected.
11.5.5 Inactivity Timeout
OmniMessaging allows the configuration of an inactivity timeout. For IMAP and
POP sessions, if no command is issued before the configured inactivity timeout
interval elapses, then the session is terminated.
The Inactivity Timeout value is configured via the NSIM-IMAP-INACT-TIMEOUT
and NSIM-POP3-INACT-TIMEOUT parameters for the IMAP and POP servers
respectively. The value is specified in minutes.