At 1:16 AM -0400 7/20/07, Paul Galati imposed structure on a stream
of electrons, yielding:
Can someone explain what happened here? 04:49:16 concerns me the most. He
only got 10 messages or so before I disabled the account. Did he guess
the username and password?
Yes.
That was not so hard. It looks like your user "dan" is a fool. His
password was "1234"
The AUTH LOGIN method is essentially open user ID and password sent
in the clear except for base64 encoding to protect them from
transport clobbering. SIMS logs the encoded password, and the snippet
you included showed it.
--
Bill Cole
[EMAIL PROTECTED]
#############################################################
This message is sent to you because you are subscribed to
the mailing list <SIMS@mail.stalker.com>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to <[EMAIL PROTECTED]>
