Having worked at an ISP previously, those sort of userID and passwds
aren't seen as something to important to hid to them. However most ISPs
do use PAP which is more secure, but can still be hacked by somebody
with the knowledge. Another reason why ISPs encourage passwd changes,
especially for dial up users on a regular basis. Some use CHAP, but
very few use passwd encryption.
You being an ADSL user, I wouldn't even worry honestly. You send your
passwd across so fast, a user would have to have some serious hardware
to really pluck that passwd out of transmission. For dial in users,
it's more of an issue, but real crackers just hack the /etc/passwd and
passwd files on the auth server, so it doesn't matter what you send your
passwd as. :0)
tdh
T. Holmes
Unixtechs.org
[EMAIL PROTECTED]
"Real Men use Vi."
* Anthony <[EMAIL PROTECTED]> [010402 20:29]:
| I was looking at etc/sysconfig/draknet.adsl_pppoe and my username and pass to
| login to my ISP account was in plain text, viewable by anyone..Is this
| normal?
