[Users] Migrating account authentication from basic POP to OAuth2
Paul
paul at claws-mail.org
Wed Dec 21 11:33:46 UTC 2022
Hello Paul,
On Wed, 21 Dec 2022 11:55:45 +0100
Paul Rolland <rol at witbe.net> wrote:
> migration is mandatory per Microsoft decision:
Yes, I understood that.
> I see no way to continue using basic auth
I would've said, I see no way to continue using microsoft's services, but
each to their own! :) Of course, one's employer may force this, so that's a
bigger consideration.
> > There always seems to be this subtext, that somehow oauth2 is more secure,
> > being stressed, and not enough refuting of it. If you use "12345" or
> > similar weak passwords, and you reuse those passwords across all your
> > log-ins then, yes, oauth2 can help. But no-one in their right mind would
> > do that. In my view, it is always better to educate than secure people in
> > their ignorance.
>
> My passwords are longer than that, and they are made of characters picked
> up in lower, upper, number, symbols,
Sorry, I should have used the more formal 'If one uses "12345"...', my
comment was a general comment and not directed at you specifically.
My purpose was to register a refutation of the security myth pushed by
microsoft, gmail, et al.
with regards
Paul
More information about the Users
mailing list