20 Jun
2019
20 Jun
'19
1:31 p.m.
Le 20/06/2019 à 12:25, @lbutlr via dovecot a écrit :
On 20 Jun 2019, at 04:14, Jorge Bastos via dovecot <dovecot@dovecot.org> wrote:
I don't desagree with your vision, but if the use of CRAM-XXXX has to use plaint text password's on the server there's a dark side, or there's a CRAM-XXX that can use encrypted on server side? There's always the thing that can clients don't support it. The “encrypted” password store that CRAM-MD5 supports is MD5 which cannot be classified as encryption at this point.
Not sure why you are saying CRAM-XXX as there is only CRAM-MD5.
I think he is referring to my reference to SCRAM-XXX class of mech.