On Mon, 2002-12-16 at 16:44, Yoshiko MIWA wrote: > +OK POP3 v2001.78rh server ready <3bc.3dfe7a00@server> > USER username > +OK User name accepted, password please > PASS password > -ERR Bad login
Yeah, that's not how you do APOP authentication. Unless you can do MD5 hashes in your head, test using a mail client that does APOP. Or, better, test using a client that does CRAM-MD5. The APOP hash isn't very strong, and I've seen code that supposedly could derive the original password from an APOP hash, making APOP mostly useless. (I can't find it any more, but I wish that I could... Anyone know where?) -- Psyche-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/psyche-list
