MBOX-Line: From arnt at gulbrandsen.priv.no  Tue Mar 18 15:01:12 2014
To: imap-protocol@u.washington.edu
From: Arnt Gulbrandsen <arnt@gulbrandsen.priv.no>
Date: Fri Jun  8 12:34:52 2018
Subject: [Imap-protocol] STARTTLS after PREAUTH
In-Reply-To: <059bac1f-35eb-4f87-bd5e-e986dfb46b83@flaska.net>
References: <059bac1f-35eb-4f87-bd5e-e986dfb46b83@flaska.net>
Message-ID: <fcf9f696-1314-4110-9495-24a22ce91ba8@gulbrandsen.priv.no>

On Tuesday, March 18, 2014 9:46:29 PM CEST, Jan Kundr?t wrote:
> I'm a bit confused by your message. How do you want to 
> authenticate your user? Specifically, what's the use case where 
> you can safely verify the user's identity, but cannot guarantee 
> confidentiality of the connection stream?

Think about it this way. As a client author, how do you handle the case 
where the server sends you PREAUTH and you want to use TLS?

Arnt