9 Jul
2009
9 Jul
'09
7:44 p.m.
On Thu, 2009-07-09 at 17:35 +0200, Federico Nicolelli wrote:
That's a wrong way to think about it. imaps is a legacy port that should have died years ago. You can force encrypted sessions on imap port just by setting disable_plaintext_auth=yes (or even more strongly with ssl=required with v1.2+).
I guess that "disable_plaintext_auth=yes" means that you have to use encryption algorithm to protect your authentication (like md5, sha1 ecc...) but is not related with the traffic encryption.
Well .. You're confusing password schemes and authentication mechanisms. http://wiki.dovecot.org/Authentication