Date: Fri, 27 Aug 1999 14:09:59 +0100 From: Cillian Sharkey <cillian@baker.ie> To: Johan Pettersson <johpe159@student.liu.se> Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: Re: sniff,pass,e-mail clients Message-ID: <37C68E27.2A1D4FF8@baker.ie> References: <37C68683.3DC734B2@student.liu.se> <37C68545.A3F19D6@baker.ie> <37C68DFA.D03C1CD0@student.liu.se>
next in thread | previous in thread | raw e-mail | index | archive | help
> When I sniffed machine A/B and then fetched mail from machine B > I could see login and pass. But when I fetched mail from the > University I could not see login and pass. So how do I configure > machine B to not show login and pass ? (Sendmail 8.9.3, cucipop-1.31) anybody (in theory anyway) could easily sniff your username/password while you fetch your mail as long as: a) there's no encryption involved (eg. normal POP3) and b) the packets can reach the network card of the machine the person is running the sniffer on ie. must be on same network as client machine and client machine is taking out over that network.. POP doesn't support encryption AFAIK, so cucipop will be no use in this case..you might be able to use POP over ssh but don't ask me how the hell to do this :) Cillian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37C68E27.2A1D4FF8>