On Wed, Oct 29, 2008 at 11:15 AM, Paul Lesniewski <paul@xxxxxxxxxxxxxxxx> wrote: > On Wed, Oct 29, 2008 at 5:12 AM, Tomasz Chmielewski <mangoo@xxxxxxxx> wrote: >> I found some references to one time passwords (OTP) usage with >> SquirrelMail in the mailing list archives, but no definitive answer. >> >> Is it possible to set up SquirrelMail to use OTP? As almost every IMAP >> usage in SquirrelMail would be a new connection/authentication, it would >> be best if the system could use passwords independent of the real, >> system (or fetched from the main database) password. > > I fail to see why this is an argument for using OTP. > >> Real password could be used as a fallback. >> >> >> I've seen this in the development changelog, which could indicate that >> such functionality may exist: > > I'm not sure you were reading correctly. SM has no plans and no code > that does anything except give the password that the user provides to > the IMAP server. > >> Added code that allows to use internal password functions in sqimap_login(). >> >> >> But not much more info. Anyone? > > I do, however, have a OTP plugin in the works. I don't, however, have > bunches of time to finish it right now. So ultimately, you can have > what you want, but I need some time to get it done. I have a finished product now. If anyone wants to test it, please ask offlist. > If your concern is keyloggers in Internet cafes, why not use the > Virtual Keyboard plugin? > ------------------------------------------------------------------------------ ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
