Russell Nelson <[EMAIL PROTECTED]> writes:
> It's not qmail-pop3d that is insecure. It is the pop3 service itself,
> unless you use apop authentication.
Unless you use some other authentication or some type of transport-level
security. APOP still has other issues (it makes some strong assumptions
about the security of the server). We use Kerberos, for example, and I
know other folks tunnel POP through ssh or use SSL.
Tunneling is nice if you can do it, since you can set it up fairly
transparently. But PCs and Macs generally can't handle tunneling that
well.
--
Russ Allbery ([EMAIL PROTECTED]) <URL:http://www.eyrie.org/~eagle/>
