27 Mar
2017
27 Mar
'17
3:21 p.m.
On 27.03.2017 01:13, Ruga wrote:
It is a jolly bad idea to use the same password for both email and system access.
On TLS+plaintext, if your passwords are slurped by a python script, all accounts are compromised. Congratulations, the NSA will love you. On the other side of the ocean, however, there are European states where you must disclose the fact, or go to jail.
(I tried to protect dovecot passwords with bcrypt, but the mail clients refused it.)
Uh, what? Mail clients do not see how you are storing passwords locally.
Sent from ProtonMail Mobile
Aki