On 4 Mar 2020, at 14:43, RW wrote:
On Tue, 03 Mar 2020 16:05:31 -0800
Ted Mittelstaedt wrote:
2FA isn't going to help unless 2FA could be applied to the SMTP Auth
port.
Sometime 2FA on webmail is combined with separate autogenerated
passwords for pop/imap/submission.
A.k.a. "application passwords" which people may be accustomed to as a
feature of both Google's and Apple's 2FA implementations.
It is also possible to couple 2FA with OAuth 2.0 (as Google does)
although that does put you in the position of forcing users to adopt
MUAs that support OAuth 2.0.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire
