-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jason R. Mastaler wrote: > I have one question about this: > > "Theoretically, some AUTH methods are safe even over unencrypted > connections. However, tmda-ofmipd does not currently support > offering such AUTH mechanisms prior to STARTTLS, but allowing a > different set of AUTH mechanisms after STARTTLS." > > tmda-ofmipd supports CRAM-MD5 authentication, doesn't it?
Yes. However, right now, there's either --tls=on which accepts no auth methods (safe or not) outside TLS, and --tls=optional, which accepts any auth method inside or outside of TLS. One could imagine another option that allowed safe methods outside TLS, and anything inside TLS. That latter option doesn't exist right now. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFF49BShk3bo0lNTrURAre7AKCQ8pNARYeVBdU3twdSPbm0lv6WkwCfaKc6 TBklOuP37rtcRq4BB3AlC/w= =hMGl -----END PGP SIGNATURE----- _________________________________________________ tmda-workers mailing list ([email protected]) http://tmda.net/lists/listinfo/tmda-workers
