Reference a previous post that contained the following message which was originally posted in 2007. We are using Groupwise 8.02 on OES2 SP1, SLES 10 SP2. Just wanted to know if any thing had changed to resolve this problem:

A customer has had a security scan of their system for compliance with
their bank requrements.

The suggested solution to the above problem is to disable the plaintext
authentication methods on the SMTP server for unencrypted (non-SSL/TLS)
sessions, or consider using more advanced challenge-based authentication
methods like CRAM-MD5 or DIGEST-MD5.

Anyone any ideas on how I can impliment these changes, get the system
compliant or just give up? I cannot see anywhere in the GWIA
configuration to turn off the PLAIN or LOGIN as one of the AUTH