-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Je Mardo Februaro 22 2005 14:10, Dave Nebinger skribis: > > I think you're right. Does this mean anyone could easily intercept my > > login and password and log in as me? > > The basic answer for this is "yes". Definitely your password could be > intercepted and used by others. > > But consider for a minute what is involved with that... > > Someone floating out there on the net would have to be intercepting > packets. And the packets that you're sending would need to flow over the > same path to the endpoint (not guaranteed by IP). And they would need to > be able to filter the mass of packets going by their system to get the > one(s) with your password information. And they would initially have to > identify a need to get your password in order to target your packets for > capture. > > Granted all of this is indeed doable, but IMHO it's like looking for a > particular atom in a haystack, let alone the needle...
I disagree. The "I don't care because I'm unimportant" philosphy is dangerous. It is unlikely that there will be people wanting your password, but it is very likely that there are a lot of malicius people wanting any password, just to do harm (to you, or to others, as you). Then, all you need is one of these malicius people to be at your ISP (running a program to intercept any password) or at the other end's ISP, or, if you are unlucky enough, anywhere in the middle. - -- Pupeno: [EMAIL PROTECTED] - http://pupeno.com Reading Science Fiction ? http://sfreaders.com.ar -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFCG9M1fW48a9PWGkURAkudAJ47eOWauRkQJkPAIYf2oFEsKOupfwCeJ8Fv RMvw0/oTLKugZ6JuGPNC+b4= =Ia5j -----END PGP SIGNATURE----- -- [email protected] mailing list
