On 20 Jun 2019, at 04:14, Jorge Bastos via dovecot <dovecot@dovecot.org> wrote: > I don't desagree with your vision, but if the use of CRAM-XXXX has to use > plaint text password's on the server there's a dark side, or there's a > CRAM-XXX that can use encrypted on server side? There's always the thing > that can clients don't support it.
The “encrypted” password store that CRAM-MD5 supports is MD5 which cannot be classified as encryption at this point. Not sure why you are saying CRAM-XXX as there is only CRAM-MD5. -- Lead me not into temptation, I can find the way.
