Security of IMAP?
So, frequently I see warnings about using IMAP due to some unstated security reasons, but I am unclear on what security vulnerabilities IMAP presents. OK, for most instances of IMAP I have encountered you can't require 2FA login but instead must utilize an app password to make IMAP work. But, as long as that app password is long and random it should be essentially uncrackable. And, unless I am mistaken that app password would only give access to the actual email and not allow attackers into your account management. Occasionally I try various things with a Gmail account that require the creation of an app password, and that is always flagged as a security concern by Google. Google reminds me frequently and asks if the app password is still needed. So what are the security concerns with IMAP?
|