-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, Aug 18, 2003 at 01:15:52AM +0530, Robins Tharakan wrote: Robins>hi, Robins> Robins> Robins>i just did a tcpdump on the local cable wallah network, and realised Robins>that anyone with a Robins>tcpdump -i eth1 -w file.dump Robins>can easily see my pop username/pwd ....
Normal POP mail sessions, by their very nature, are insecure. The password goes across the network in clear text for everyone to see. anyone with a simple network sniffer can grab your password. There are many methods of achieving secure authentication already, such as APOP, KPOP, and IMAP. You can also do Secure POP via SSH. there is a mini HOWTO available on the subject. But Your mail provider may be unable or unwilling to use a more secure protocol. - ---end quoted text--- - -- all the things we keep inside, are the things that really matter, the face puts on its best disguise, and all is well, until the heart betrays. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/QGuD7v3NbZTFJeIRAtXXAJ9AnZu5z3IU4QmFIH0G0jVPUov+iACaAljc 4Hd4rCaoeUEccqVtFVdNP6o= =h37N -----END PGP SIGNATURE----- _______________________________________________ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
