Autor: Jakob Hirsch Data: Para: meburke CC: exim-users Assunto: Re: [exim] Re: smtp authorization test via telnet?
meburke@??? wrote:
> Jakob wrote: (in response to POP-before-SMTP)
> the pros and cons on this? Or, alternatively, can you give me a short
> version of your thinking on this?
pop-before-smtp is merely hack, introduced because there smtp had no
authentication facility. But that is long ago, the smtp auth RFC is dated
March 99 and all today's email clients support smtp auth.
Why is pop-before-smtp a hack?
- does not work with some clients (e.g. OE, possible workarounds though)
- misuses a protocol to submit information for another protocol
- ... which can be submitted through the protocol itself
- possible race-conditions (though mostly irrelevant in practice)
- slower and more resource usage
- involves online parsing of logfiles or a hacked pop3d daemon
- needs a database or a special daemon to keep the login information
- therefore generates more points of failure
These are things that come to mind right now, there are possibly many more.