In response to George Kirikos' post about the security issues around being able to retrieve the list of usernames/passwords.
How feasible would this be? It may be totally way off the mark, but... - RSP logs into RWI, places request for list of logins. A generated code is presented; RSP copies code to his website or server and submits it via some type of form or script there (residing in a password protected directory or SSH login). This submission validates the IP address that is on file (and not available via the RWI). Then there'd be 2 sets of logins to get past plus matching IP. Jo Shea
