Re: abusive changes of person handles (protect your maintainer!)
- Date: Fri, 19 Nov 1999 13:37:46 +0100
I AGREE !!!
----- Original Message -----
From: Wilfried Woeber, UniVie/ACOnet woeber@localhost
To: joao@localhost; db-wg@localhost; woeber@localhost
Sent: Friday, November 19, 1999 2:31 PM
Subject: Re: abusive changes of person handles (protect your maintainer!)
> Hi Joao!
>
> >There are two issues here:
> >- The use of very weak protection methods (NONE and MAIL-FROM) (see *).
>
> wrt the "see *":
> I think they do have a point in principle.
> In reality (for many individuals, I suppose :-) it's still more
> staright-forward to fake a mail-from header than reverse-engineer a
> crypted password string in itself.
>
> However, given the fact that many operatinal environments these days
> require mail to be shipped multi-hop, the risk of disclosing the
> (clear text) password is greater than we might want to believe...
>
> >Would the community see this change in behaviour as a good thing?
>
> Definitely!
>
> Wilfried.
>
