The APOP protocol protects your password from being transmitted across the network. It does so by storing the password in a file on local disk. This helps keep the password safe from others.
How Does APOP Protect Your Password?
APOP functions when the mail client and the server are configured by the way of encrypted password to support authentication. Whenever the mail client sends an authentication request to the APOP server, it sends back a string that has a unique identifier based on the process ID and current time. The email program that receives this encrypted text performs some mathematical calculation on the encrypted password.
Meanwhile, the APOP server also undertakes the same calculations on the password that is stored locally. When the email program finishes the calculation, it validates by sending a 128-bit fingerprint to the server. The server compares both the values and if it finds that they both match, it will authenticate it. In order to protect the password, APOP uses hash function that avoids replay attacks and disclosure of the shared secret.
The most popular clients who implement this technology are Mozilla Thunderbird, Mutt, Eudora, Kmail, RimArts, Windows Live Mail, PowerMail and Novell Evolution.
The Protocol Technical Details
The technical details of APOP are extension to POP3 with other features like message flag management, multipart message support and APOP support. The extension mechanism supports the optional commands, like TOP and UIDL. The role of this pass word authentication is to give simple support to downloading, deleting and managing email box.
Setting up an APOP
For coding an APOP, you have to create a password. And for checking your email, you have to create another secondary password in your ICL account. After that, you have to change the mail client's settings a little. You have to follow some of the instructions given below:
First, you have to check whether your email POP client supports the authentication protocol or not because some of them like Netscape Navigator mail do not support this.
Next, you have to log into the code through the secure shell software or SSH. SSH client program is meant for establishing connections to an SSH daemon by accepting remote connections. Nowadays, they are available in most of the modern operating systems, including Mac OS X and in some of the distributions like GNU/Linux, OpenBSD, FreeBSD, Solaris and OpenVMS.
After that, prompt the POPAuth, which is a POP proxy authentication module, to set up your password. It is plague% POPAuth. Now, you can change your POP password and enter the new password and log out.
Finally, click on the email client and change the settings to use APOP. To do this, open Eudora, click on the special menu settings ->checking mail -> Click on the "APOP" button then click ok. Then you can enter your password.