> Hi all,
> Just had a look at draft-daboo-srv-email, all very pleasant. I think service
> weights have been discussed already but:
> Why does the spec provision for IMAPS and POP3S?
Because a provisioning mechanism that fails to deal with the needs ot
real-world deployments - and there's plenty of this secure port stuff deployed
out there - makes itself far less likely to deploy.
> Shouldn't we be seriously discouraging that usage?
Perhaps. But a provisioning mechanism specification isn't the place to do it.
If you want to promote or discourage a particular approach to deploying network
services, you need to do it directly. Write a "IMAPS/POPS considered harmful"
draft and get it published.
We have buckets full of past experience informing us that trying to shift
existing deployments away from approaches we don't like through registration
policy resrictions not only doesn't work, it often backfires and causes far
more harm than good.
> Is there some reason to keep them, even if "deprecated"/discouraged?
Yes. See above.
> Right now the only reason I know of is IMAP clients which send out LOGIN
> complete with password before they can be stopped; for that we have the
> LOGINDISABLED capability.
The abscence of a technical justification doesn't mean no other sort of
justification exists.
Ned
_______________________________________________
yam mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/yam
