At 10:49 pm +0300 19/2/99,the wonderful Roman V. Isaev wrote:
> I see there are some pop3-before-smtp authentication patches.
>But using pop3 before sending mail is awkward. So... why nobody
>thought about a patch using a password in user's e-mail? :)
>Any MUA allows user to enter his e-mail. ANY. Let's use it!
>password#username@host. Check that password at mail from: point,
>receive message if user's password is okay, strip password# from
>all headers and continue the work...
>
> What's wrong with this idea? I think I'm inventing a bicycle,
>but there must be a good reason to reject it...
it sounds horribly insecure to me...
peter.
--
peter at gradwell dot com; online @ http://www.gradwell.com/
"To look back all the time is boring. Excitement lies in tomorrow"
