On 10-Mar-2003 11:11 Charlie Brady wrote:
|
| Now a big downside to this approach is that imapfront-auth doesn't yet
| support STARTTLS.
There is a patch for tcpserver which adds ssl support to it:
http://www.nrg4u.com/
I think this is better than STARTTLS as most clients don't offer enough
choice to avoid potential man-in-the-middle attacks. Besides, pop3,
imap, smtp all offer dedicated tls/ssl ports.
| How many lines of bincimap can we remove if someone else does TLS and
| authentication for us?
Assuming I understand you correctly, I agree that having bincimap work
in post-auth mode has great benefit.
--
-dale
