Subj : Pssword ord ord case ins
To   : mark lewis
From : Alan Ianson
Date : Sun Apr 26 2020 12:26:24

Hello mark,

 AI>> I was talking about binkps over TLS. In that case we wouldn't
 AI>> need a session password either since we are relying on the TLS
 AI>> handshake.

 ml> are two condoms better than one?

In the case of TLS we get a secure session but that could be anyone so we still need a session password or some mechanism to authenticate so mail from non password protected sessions is placed in the non secure inbound.

I was wrong when I said the above.

 ml> with the speed of today's systems, the additional processing and/or
 ml> the decision to use or not the session password is negligible... the
 ml> additional space required is equally negligible, as well...

That is true but a proper binkps protocol (if there ever is one) would best be designed simply to do what we need it to do in an efficient way.

 Ttyl :-),
         Al

--- GoldED+/LNX
 * Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

.