It seems to be FAQ, but I can not find answer with google. I want to disable plain login (non-SASL one) to my IMAP and POP3 servers when TLS is not used.
Most of clients can use TLS (with dedicated port or STARTTLS), but some of them cannot (mobile phones, for example). But shuch not-SSL-able clients knows about CRAM-MD5. Is it possible? Maybe, here are some patches for imapd/pop3d? I'm using standalone servers (with postifx MTA), courier-authlib is used for authorization against mySQL base. -- // Lev Serebryakov _______________________________________________ Courier-imap mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
