doc: lei-security: section for WIP auth methods

author Eric Wong <e@80x24.org>

Tue, 21 Sep 2021 07:41:53 +0000 (07:41 +0000)

committer Eric Wong <e@80x24.org>

Tue, 21 Sep 2021 19:18:35 +0000 (19:18 +0000)
author Eric Wong <e@80x24.org>
Tue, 21 Sep 2021 07:41:53 +0000 (07:41 +0000)
committer Eric Wong <e@80x24.org>
Tue, 21 Sep 2021 19:18:35 +0000 (19:18 +0000)
diff --git a/Documentation/lei-security.pod b/Documentation/lei-security.pod

index 4b712c2d4233ed652494b629e045702f8d87146c..02305b9055c2898cac88d5fa6b80ca0fe94e6f9e 100644 (file)
--- a/Documentation/lei-security.pod
+++ b/Documentation/lei-security.pod
@@ -99,6 +99,14 @@ While credentials are not written to the filesystem by default,
  it is possible for them to end up on disk if processes are
  swapped out.  Use of an encrypted swap partition is recommended.
  
+=head1 AUTHENTICATION METHODS
+
+LOGIN (username + password) is known to work over IMAP(S),
+as does AUTH=ANONYMOUS (which is used by L<public-inbox-imapd(1)>
+as part of our test suite).  AUTHINFO may work for NNTP, but
+is untested.  Testers will be needed for other authentication
+methods.
+
  =head1 DENIAL-OF-SERVICE VECTORS
  
  lei uses the same MIME parsing library as L<public-inbox-mda(1)>
author	Eric Wong <e@80x24.org>
	Tue, 21 Sep 2021 07:41:53 +0000 (07:41 +0000)
committer	Eric Wong <e@80x24.org>
	Tue, 21 Sep 2021 19:18:35 +0000 (19:18 +0000)