> On 08/06/2026 16:19 EEST Jochen Bern via dovecot <[email protected]> wrote: > > > Since I don't remember seeing *this* mentioned here so far, but *do* > remember people asking about Outlook-dovecot compatibility issues every > now and then, here's a potential cause for seeing more of those in the > immediate future: > > https://fedoramagazine.org/fedora-43-upgrade-revealed-20-years-old-outlook-security-bug/ > > Kind regards, > -- > Jochen Bern > Systemingenieur > Binect GmbH
One thing to mention right off the bat is that Dovecot has not allowed unencrypted logins by default, even if Outlook has. This has required, even in the past, that you set `disable_plaintext_auth = no`, which allows you to log in w/o SSL. So I wonder if half of this issue is about using that option, and now that it has been renamed as `allow_cleartext_auth`, it has became more obvious why it should not be used. Aki _______________________________________________ dovecot mailing list -- [email protected] To unsubscribe send an email to [email protected]
