13 Feb
2006
13 Feb
'06
2:49 p.m.
On Mon, 2006-02-13 at 13:16 +0100, Matthias Andree wrote:
"Takehiko Abe" keke@gol.com writes:
I am using dovecot [1.0 beta3] as a pop server with drac. It is
Drac is an abomination that needs to go away.
I am requesting to unsupport it before Dovecot 1.0.
Drac is insecure by design, in that it doesn't authenticate the same channel (but POP3/IMAP instead) that is being privileged (SMTP for relay), and without any clue of how long dynamic IP mappings remain stable. Better solutions are available (and have been for years), namely SMTP AUTH, supported by all relevant mail transfer agents(*) and - IMO - all relevant clients.
a question from an uninitated: what is drac after all?
-- BestSolution.at EDV Systemhaus GmbH http://www.bestsolution.at