On May 31, 2011, at 6:12 PM, John Levine wrote:
I think defining an
UNAUTHENTICATE/LOGOUT/whatever-you-want-to-call-it extension would be
a great idea, but it's definitely a separate effort from any of this
I understand what it would do, but I'm not sure I understand what
problem it solves. If you want to drop your auth credentials, you
can always quit and call back. Yes, that's slower, but does it
happen often enough to merit asking people to add yet another hack
to their mail servers?
The place it might have value would be high traffic webmail
servers, where a single application serves a large number of
users. The ability to keep a connection pool open might be
helpful. TCP setup and teardown isn't that expensive compared
to authentication, but TLS setup might be.
I'm not convinced it'd be useful, but it's not obviously useless.