Authentication : use a different username than the email address
Authentication : use a different username than the email address
Why give an haker the 50% of the authentication for free ?
FG
shared this idea
Hello,
There is a way in MDaemon to help mask your email address.
Edit the MDaemon.ini file and in the [Special] section set AllowAliasLogon=No. Save the file and then restart MDaemon. Create an account with a username such as qwe567@zzz.org. Then create an alias for actualaddress@zzz.org = qwe567@zzz.org.
You can then configure your email clients to send email using the actualaddress@zzz.org and to login using the qwe567@zzz.org address. Any login attempts using this address will fail but email will be sent/received using the address.
Thanks,
Arron
-
FG
commented
I'm sure it works ... but reconfiguring more than 600 accounts on our MDaemon server and about 650 email clients/devices with the new authentication would be a **** !
It'd be easier having a new field 'Alternative User Name' in the user account form : if I fill up it MDaemon will use it as the user authentication, otherwise MDaemon will go on using the user email address
Thanks
-
FG
commented
In MDaemon the username to access an account is the e-mail address:
EMAIL ACCOUNT = ***.yyy@zzz.org
USR = ***.yyy@zzz.org
PSW = abc123An haker who knows my email address has automatically the 50% of information about my authentication data
It'd be safer to have a different username than the email address to access my account:
EMAIL ACCOUNT = ***.yyy@zzz.org
USR = qwe567
PSW = abc123Thanks