On 2021-08-22 22:16, Bill Cole via Exim-users wrote:
On 2021-08-22 at 17:31:44 UTC-0400 (Sun, 22 Aug 2021 17:31:44 -0400)
Gary Dale via Exim-users <[email protected]>
is rumored to have said:
Here's the session, starting with the command and including entire
output (only my customer's domain name has been removed)
The full credentials for that account have been exposed irretrievably
to the world by the AUTH sequence in the session that you posted. The
strings that look like garbage are just Base64-encoded version of
username and password, with no encryption.
Obviously, you should change that password ASAP.
Done.
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
