Miles Fidelman wrote:
Mike,
I'm not sure why "It is not considered acceptable to force the users
to authenticate a second time when they want to send email" - we all
do that all do that all the time anyway. Pretty much all MTAs ask
clients for a username and password as part of the connection cycle -
it's just usually set up to be automatic, with the info configured
into your MUA. SMTP AUTH just adds some crypto to it - users just
check a different box when they set up their clients.
Good point. Are the users force to authenticate a second time when they
want to read mail?
