Help on CRAM-MD5
FUSTE Emmanuel
emmanuel.fuste at thalesgroup.com
Thu Jun 20 13:31:45 EEST 2019
Le 20/06/2019 à 12:25, @lbutlr via dovecot a écrit :
> On 20 Jun 2019, at 04:14, Jorge Bastos via dovecot <dovecot at dovecot.org> wrote:
>> I don't desagree with your vision, but if the use of CRAM-XXXX has to use
>> plaint text password's on the server there's a dark side, or there's a
>> CRAM-XXX that can use encrypted on server side? There's always the thing
>> that can clients don't support it.
> The “encrypted” password store that CRAM-MD5 supports is MD5 which cannot be classified as encryption at this point.
>
> Not sure why you are saying CRAM-XXX as there is only CRAM-MD5.
>
I think he is referring to my reference to SCRAM-XXX class of mech.
More information about the dovecot
mailing list