On Mon, 11 Dec 2006, Marc Perkel wrote: > All outgoing email from consumers should by default be required to > use authenticated SMTP or some new authenticated protocol.
Unfortunately this is defeated by a "Remember this password?" option in the mail client. A bot can easily retrieve the authentication information from the mail client's configs on disk, and may be able to retrieve it from the mail client directly if it is executing. And if the mail client refuses to remember the user's password for them, it will probably experience declining popularity. -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ [EMAIL PROTECTED] FALaholic #11174 pgpk -a [EMAIL PROTECTED] key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- The fetters imposed on liberty at home have ever been forged out of the weapons provided for defense against real, pretended, or imaginary dangers from abroad. -- James Madison, 1799 ----------------------------------------------------------------------- 4 days until Bill of Rights day
