On 22/12/24 03:19, Tomasz Pala via Postfix-users wrote:
What's worth mentioning is that PLAIN/LOGIN also requires cleartext password storage - on the client side.
This is not entirely true. It is possible for a client to store passwords in an encrypted db which is decrypted with its own password or key. It is true, however, that for ALL mechs some sort of authentication token must be available in plain text at some point on the client side.
Peter _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
