On Thu, 2009-07-09 at 17:35 +0200, Federico Nicolelli wrote: > > That's a wrong way to think about it. imaps is a legacy port that should > > have died years ago. You can force encrypted sessions on imap port just > > by setting disable_plaintext_auth=yes (or even more strongly with > > ssl=required with v1.2+). > > > > > I guess that "disable_plaintext_auth=yes" means that you have to use > encryption algorithm to protect your authentication (like md5, sha1 > ecc...) but is not related with the traffic encryption.
Well .. You're confusing password schemes and authentication mechanisms. http://wiki.dovecot.org/Authentication
signature.asc
Description: This is a digitally signed message part