Sam Varshavchik wrote:
You're not being foolish, the IMAP clients are the fools. If they're told not to use plaintext authentication, yet they still try it, well, they have nobody but themselves to blame.
Thanks, Sam. I agree. But I'd still like to know why this succeeds when it shouldn't. Shouldn't the server just reject plaintext LOGIN attempts ?
Define "shouldn't". The configuration file setting simply sets the IMAP capability string. That's it.
-------------------------------------------------------
This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server
http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
