Re: [Exim] a more or less special mail solution

Startseite
Diese Nachricht ist Teil des folgenden Threads:
MDer komplette Thread sortiert nach Datum
MJeremy C. Reed am <-
MJeremy C. Reed am ->
Nachricht löschen
Nachricht beantworten
Autor: Tamas TEVESZ
Datum:  
To: exim-users
CC: pop-imap
Betreff: Re: [Exim] a more or less special mail solution
On Sat, 31 Aug 2002, Jeremy C. Reed wrote:

> Having the passwords stored encrypted and sending a shared secret and then
> hash back would be good.

no. it's impossible. you either store clear and transmit hash, or
transmit clear and store hash.

with cram (hmac), it's possible to _obfuscate_ the stored cleartext
password, but it's just obfuscation (xor, exactly).

> Anyone know of a POP3 (or related) standard that is commonly used by
> popular mail clients that does that?

none. and as long as it's hmac in use, there won't be any, either.


--
(void)



Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-users
Mailing-List-Info | Nachrichten um die Zeit		<-[Exim] Logging to MySQL database in RealtimeRe: [Exim] POP3 Connector Does Not Download Email->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)