[Dovecot] drac.c

Udo Rader udo.rader at bestsolution.at
Mon Feb 13 14:49:50 EET 2006


On Mon, 2006-02-13 at 13:16 +0100, Matthias Andree wrote:
> "Takehiko Abe" <keke at gol.com> writes:
> 
> > I am using dovecot [1.0 beta3] as a pop server with drac. It is
> 
> Drac is an abomination that needs to go away.
> 
> I am requesting to unsupport it before Dovecot 1.0.
> 
> Drac is insecure by design, in that it doesn't authenticate the same
> channel (but POP3/IMAP instead) that is being privileged (SMTP for
> relay), and without any clue of how long dynamic IP mappings remain
> stable. Better solutions are available (and have been for years), namely
> SMTP AUTH, supported by all relevant mail transfer agents(*) and - IMO -
> all relevant clients.

a question from an uninitated: what is drac after all?

-- 
BestSolution.at EDV Systemhaus GmbH
http://www.bestsolution.at
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20060213/eefec9bc/attachment.pgp


More information about the dovecot mailing list