Re: SMTP AUTH design-team meeting addendum

[Dave Crocker <dcrocker@xxxxxxxxxxxxxxx>]

Small suggested change to put make the language state the positive:

At 12:35 PM 9/8/98 -0700, Randall Gellens wrote:
>If an existing SMTP server is reconfigured or upgraded to advertise
>authentication mechanisms, this is likely to cause local upgraded SMTP
>clients to prompt users for their passwords when sending mail.  This
>behavior change may be undesirable at some sites, while other sites may
>desire it.  Therefore, servers SHOULD be configurable to not advertise
>authentication mechanisms which do not authenticate the server to the
>client or include a privacy layer, such as CRAM-MD5, unless the client
>is granted additional delivery rights or services by such
>authentication.

...desire it.  Therefore servers SHOULD be configurable to advertise
authentication mechanisms only to clients which must use those
authentication mechanisms to obtain additional delivery rights or services.

d/

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Dave Crocker                                         Tel: +1(408)246 8253
<mailto:dcrocker@xxxxxxxxxxxxxxx>                        675 Spruce Drive
                                                  Sunnyvale, CA 94086 USA
Brandenburg Consulting
<http://www.brandenburg.com>                         Tel: +60(19)3299 445
                                              Post Office Box 296, U.P.M.
Fax: +1(408)246 8253                     Serdang, Selangor 43400 MALAYSIA