Hello Thomas, > I still not understand, what this should be for!? The SMTP password (used > in the AUTH command) are stored and checked at the MTA - why should assp > check its weakness, if the MTA should do this at the time when it is > specfied? You are right. But many MTAs have no option to proof that the users (which can change their passwords at their own on these systems) use strong passwords. So ASSP will be able to close this gap.
I think on SSL connections if ASSP uses DOtls, it should get the passwords as well? Or am I wrong? And yes, we have several users using plaintext passwords... Matti ------------------------------------------------------------------------------ ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo _______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test
