Thus spake Kurt Lieber (debian@kirpatrick.com): > IMAP does NOT encrypt passwords. A couple of clarifications. IMAP can operate over SSL (it's called IMAPS on TCP port 993 instead of 143), and a good portion of the mail clients that support IMAP will support IMAPS. Also, depending upon the server used, it can support advanced authentication schemes. For example, Cyrus IMAP supports SASL, which abstracts such auth schemes as CRAM-MD5, DIGEST-MD5, and GSSAPI. Then, even if you are using plaintext IMAP on port 143, your password can be concealed according to these schemes. However, typically you will have to manually set these advances features up. -- Justin R. Miller <incanus@codesorcery.net> PGP/GnuPG Key ID 0xC9C40C31 (preferred)
Attachment:
pgpxRaMqLp8o_.pgp
Description: PGP signature