On Sun, Jul 02, 2000 at 12:53:04PM -0700, Joseph R. Junkin wrote:
> What exactly is APOP?
APOP is an authentication mechanism for POP, in which passwords are not
transmitted cleartext but *do* need to be in a cleartext-list on the
server.
> Is it supported by outlook and Netscape (ie typical clients)?
As far as I know, yes.
[snip]
> So,
> How secure is this, have others been using it?
I have not tried it, but it should be quite secure. I do intend to support
it in the virtualdomain checkpassword replacement I am building (and will
opensource, but don't ask, it will take it's time :)
> Please forgive my ignorance, I don't spend much time with qmail admin
> because it works so well I don't have to. Yet I have always been
> bothered by sending users passwords over the net, even though those
> users are not allowed a shell i.e. /bin/false.
That is a very good thing to be concerned of indeed :)
Greetz, Peter.
--
[EMAIL PROTECTED] - Peter van Dijk [student:developer:ircoper]
