From owner-freebsd-isp@FreeBSD.ORG  Tue Apr 13 10:24:55 2004
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B300F16A4CE
	for <freebsd-isp@freebsd.org>; Tue, 13 Apr 2004 10:24:55 -0700 (PDT)
Received: from manganese.bos.dyndns.org (manganese.bos.dyndns.org
	[63.208.196.3])	by mx1.FreeBSD.org (Postfix) with ESMTP id 67E5543D5C
	for <freebsd-isp@freebsd.org>; Tue, 13 Apr 2004 10:24:55 -0700 (PDT)
	(envelope-from twilde@dyndns.org)
Received: from manganese.bos.dyndns.org (twilde@localhost [127.0.0.1])
	i3DHOsdQ020589
	for <freebsd-isp@freebsd.org>; Tue, 13 Apr 2004 13:24:54 -0400 (EDT)
	(envelope-from twilde@dyndns.org)
Received: from localhost (twilde@localhost)i3DHOssS020586
	for <freebsd-isp@freebsd.org>; Tue, 13 Apr 2004 13:24:54 -0400 (EDT)
X-Authentication-Warning: manganese.bos.dyndns.org: twilde owned process doing
	-bs
Date: Tue, 13 Apr 2004 13:24:54 -0400 (EDT)
From: Tim Wilde <twilde@dyndns.org>
X-X-Sender: twilde@manganese.bos.dyndns.org
To: freebsd-isp@freebsd.org
In-Reply-To: <20040413170226.GH6087@mind.net>
Message-ID: <Pine.BSF.4.58.0404131323160.20241@manganese.bos.dyndns.org>
References: <20040413170226.GH6087@mind.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Spam-Status: -4.9 () BAYES_00
X-Scanned-By: MIMEDefang 2.39
Subject: Re: CRAM-MD5 support in Outlook Express?
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Apr 2004 17:24:55 -0000

On Tue, 13 Apr 2004, John Fox wrote:

> So I'm writing with two hopes:
>
> 1) That someone will confirm or disconfirm the prior assertion that
> OE does not support CRAM-MD5.
>
> 2) That if such support is lacking, perhaps someone else can give
> me a different idea for getting rid of plaintext authentication
> for POP3.

Have you considered offering POP3 via SSL only?  Outlook Express, and
pretty much everything else, support that just fine, and you can still use
the "plaintext" authentication methods, but simply have them protected by
your SSL session.  Alternately, if your POP3 server supports it, you could
offer CRAM-MD5 only via non-SSL, and all authentication methods via SSL,
to cope with clients that support CRAM-MD5 but not SSL.

Tim Wilde

-- 
Tim Wilde
twilde@dyndns.org
Systems Administrator
Dynamic Network Services, Inc.
http://www.dyndns.org/