On Mon, Nov 05, 2001 at 01:50:42PM +0100, Andreas Metzler wrote: > IMAP- and POP-SSL's strength is not e-mail privacy but to stop sending > unencrypted passwords over the network, alternatives for /that/ are > eg. APOP and CRAM-MD5, but afaik server-side support for that is not > that common. > cu andreas Also, at least for cram-md5, the server side needs to store the secret (password) in cleartext (well, at least, needs to be able to restore it to cleartext). -- Peter Mathiasson | GPG Fingerprint: E-Mail: peter@mathiasson.nu | A9A7 F8F6 9821 F415 B066 Web : http://www.mathiasson.nu | 77F1 7FF5 C2E6 7BF2 F228
Attachment:
pgpco5XPxtwmI.pgp
Description: PGP signature