--- Philip S Tellis philip.tellis@iname.com wrote:
On Fri, 28 Dec 2001, ambarish pathak wrote:
I always thought IMAP was an insecure as POP3 is.
Will you
please elaborate? Thanks in advance.
[snip] the protocol bein secure itself may not be the case always. AFAIK, 1 can enhance the security provided by some of these protocols by incorporatin 3rd party authentication mechanisms as our dear lugger philip has mentioned previously.
The situation as mentioned by u is still quite ambigious nd does not mention the potential source of the attacker. AFAIK, there is no way to avoid DOS, DDOS attacks unless all the networkin equipment manufacturers in the world adhered to higher security polices....but again this is a very debatable issue that has spawned more than a few flame wars.
U can always use IDS systems to inform u abt potential attacks on ur network.
IMAP allows authentication through either the LOGIN or AUTHENTICATE commands. The LOGIN command sends username and password as plaintext, while AUTHENTICATE provides a general mechanism for a variety of authentication techniques. (RFC2060)
Trevor Warren
===== ( >- LINUX, It's all about CHOICE -< ) /~\ __ http://www.qmailtheeasyway.com __ /~\ | ) / mailto: trevorwarren@yahoo.com \ (/ | |_|_ \ Urgent ->9820349221@maxtouch.co.in / _|_| ___________________________________/
__________________________________________________ Do You Yahoo!? Send your FREE holiday greetings online! http://greetings.yahoo.com