From: Matthias A. <mat...@gm...> - 2024-09-24 14:21:20
|
Am 20.09.24 um 08:08 schrieb Ian! D. Allen: > Is fetchmail version 7 with XOAUTH2 stable enough to release? No it's not. 6.5 is neither, but very close. > From Microsoft "POP, IMAP, and SMTP settings for Outlook.com": > > Outlook.com requires the use of Modern Auth / OAuth2. Basic auth > is in the process of being deprecated from the Outlook.com service. Yeah. Their choice to take away user freedom of choice, and imply to have software reviewed if they deem it good enough to talk to them. > From Microsoft on September 12, 2024: > > Update your sign-in technology before September 16th, 2024 to maintain > email access. > > The safety and security of your information is top priority for > Microsoft. To help keep your account secure, Microsoft will no longer > support the use of third-party email and calendar apps which ask you > to sign in with only your Microsoft Account username and password. To > keep you safe you will need to use a mail or calendar app which > supports Microsoft’s modern authentication methods. If you do not > act, your third-party email apps will no longer be able to access > your Outlook.com, Hotmail or Live.com email address on September 16th. Yeah. Their choice to take away user freedom of choice, and imply to have software reviewed if they deem it good enough to talk to them. See which of the service permit you to configure app-specific passwords, and use those, or else choose a different service. Fetchmail is free and open source software, and free means free choice. When have we had to fix security issues in fetchmail for the last time? How many over the decades? How many weeks ago has your favorite browser that you do need for OAUTH2 schemes fixed security bugs, and how many were they? Sorry if this doesn't fit your bill. Talk to those that change authentication schemes that cost you your freedom, not to providers of free software where you enjoy and retain free choice liberties. |