IMHO, the only reason for an open source server running on W2K to NOT support NTLM authentication is bigotry - the SSPI APIs needed to support NTLM are pretty simple to support and are well documented. Oh, and you get K4/K5 authentication for free, since there's an SSPI provider for K4/K5 available in SSPI.
See http://www.microsoft.com/windows2000/techinfo/howitworks/security/sspi20 00.asp for more details. Larry Osterman -----Original Message----- From: Marek Kowal [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 27, 2002 9:57 AM To: '[EMAIL PROTECTED]' Subject: Outlook express AUTH command Hi there, This is not really IMAP related question, but: Does anybody know, what AUTH modes are supported by Outlook Express? I've just heard that APOP or CRAM-MD5 is not supported. Only LOGIN is, and this is not real password protection, since this is just BASE64 login/password encryption and anyone can decrypt them. So how can I connect securely to server with OE, except for SSL? BTW, will UW-IMAP support NTLM authentication? Is there any Open Source server, that does? Cheers, Marek. -- ----------------------------------------------------------------- For information about this mailing list, and its archives, see: http://www.washington.edu/imap/imap-list.html -----------------------------------------------------------------
