On Fri, 2021-01-15 at 17:44 +0000, Ian Batten via Info wrote: > No, because IMAP clients are continuously creating and destroying > IMAP sessions. > The correct solution if you need two-factor authentication for a mail > server is to put the IMAP service behind a VPN server and permit > access to email only via the VPN, which in turn has two-factor > authentication. Stacks like Office365 "solve" the two factor authentication requirement in the case of services like IMAP & SMTP by having "application passwords". So my IMAP password is distinct from my user password; it is both machine generated [longish and random] and also does not expire. ------------------------------------------ Cyrus: Info Permalink: https://cyrus.topicbox.com/groups/info/T0cce10bfd349100c-M60a7ab8ae7d4b90bd05861fb Delivery options: https://cyrus.topicbox.com/groups/info/subscription
