On Monday, October 27, 2003, Martin Webster wrote in <mid:[EMAIL PROTECTED]>:
MW> Perhaps plain text editors should encrypt data? Ludicrous! And why MW> encrypt plain text messages to your hard disk when you send them MW> over the Internet without encryption? E-mail (SMTP/POP) is MW> inherently insecure. Ummm, no one is talking about encrypting the messages, Martin. That's what SecureBat, disk encryption, or encrypted messages are for. We're talking only about passwords, which pertain not only to existing content but also to one's identity. They are two separate issues. A misused password can wreak boundless havoc for years after the incident. MW> As for passwords, doesn't the same apply since most POP servers use plain text MW> authentication? No, it doesn't. Security is not a binary choice; there are degrees of need and degrees of security. The possibility of someone snatching a password from regular Internet usage is real, but the probability is low. In any event, (a) most POP servers nowadays probably provide for MD5 authentication, and (b) the user can choose a provider that does provide the required level of authentication. Again, it's a matter of degrees and choice. The problem with an unencrypted password is that it pretty much vitiates any other choices that have been made. MW> There's some merit in having the mail folder under Documents and MW> Settings (XP) and I guess this could be a future install option. Albeit MW> there's nothing stopping you from doing this now. I did it a long time ago. -- JN ________________________________________________ Current version is 2.01.3 | "Using TBUDL" information: http://www.silverstones.com/thebat/TBUDLInfo.html
