20 Jun
2019
20 Jun
'19
12:25 p.m.
On 20 Jun 2019, at 04:14, Jorge Bastos via dovecot dovecot@dovecot.org wrote:
I don't desagree with your vision, but if the use of CRAM-XXXX has to use plaint text password's on the server there's a dark side, or there's a CRAM-XXX that can use encrypted on server side? There's always the thing that can clients don't support it.
The “encrypted” password store that CRAM-MD5 supports is MD5 which cannot be classified as encryption at this point.
Not sure why you are saying CRAM-XXX as there is only CRAM-MD5.
-- Lead me not into temptation, I can find the way.