[Gllug] Email Folders
Jason Clifford
jason at ukpost.com
Thu Jun 12 08:07:49 UTC 2003
On 11 Jun 2003, Mike Brodbelt wrote:
> > exim will also do login, plain and spa, which is useful, if you set all
> > up then no matter what the clients choose it will work :-)
>
> Login and plain are evil, unless wrapped in TLS. If, as others in the
> thread have been suggesting, you're authenticating from /etc/shadow,
> login and plains should be considered absolute no-no's. Use CRAM-MD5 or
> DIGEST-MD5.
If you are authenticating against /etc/shadow or any other crypted
password hash you have no choice but to use login or plain as you need the
plaintext on the server to use one of the md5 hash options.
> If you auth via SASL, you can have a separate backend as
> well - LDAP or whatever.
Via PAM yes.
Jason Clifford
--
UKFSN.ORG Finance Free Software while you surf the 'net
http://www.ukfsn.org/ Sign up now
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list