On 09/02/2017 01:16 PM, Patrick Ben Koetter wrote:
Mandatory STARTTLS*and* disallowing any shared-secret mechanism (CRAM-MD5, DIGEST-MD5, NTLM) is a clever move. This way you protect the identity while it is transported from the client to the server and you are able to store the passwords crypted.
Thank you, Patrick!
