From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <1bc8063231b5e3874d451c985e0e75cf@coraid.com>
From: erik quanstrom <quanstro@coraid.com>
Date: Mon, 17 Dec 2007 12:26:16 -0500
To: 9fans@cse.psu.edu
Subject: Re: [9fans] upas/smtpd password authentication
In-Reply-To: <20071217165431.GG603@csail.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Topicbox-Message-UUID: 1bb3b694-ead3-11e9-9d60-3106f5b1d025

> It will prevent the username:password pair from being easily
> snpooped.  Minimally this would compromise email, which as you say is
> inherantly insecure, but howmany of your users have the same username
> password pair for other things too (like the plan9 passowrd you wish
> to protect).

where would this happen?

(the second case is not a concern here.  we use seperate secret and passwords.)

- erik