Security Basics mailing list archives

Re: POP3 passwords

From: Francisco Andrades <fandrades () nextj com>
Date: Mon, 20 Oct 2003 12:02:11 -0400

Hi,

Ideally all POP3 communications should be performed over SSL/TLS. Thereal problem is why so few providers support the use of SSL foraccessing POP3 servers.


Zachary Mutrux wrote:

Why has it not been a bigger problem that POP3 passwords are unencrypted
when sent over the public Internet? Seems like they would be pretty easy for
a miscreant to steal.

zm

--
Zac Mutrux
Technology Consultant
CompuMentor
415-633-9437


--
Francisco Andrades Grassi
www.nextj.com
Tlf: +58-414-125-7415


---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
----------------------------------------------------------------------------

Current thread:

POP3 passwords Zachary Mutrux (Oct 20)
- RE: POP3 passwords Damian Lennon (Oct 20)
- Re: POP3 passwords Tomas Wolf (Oct 20)
  - Re: POP3 passwords Francisco Andrades (Oct 20)
- Re: POP3 passwords Simon Gray (Oct 20)
- Re: POP3 passwords Francisco Andrades (Oct 20)
- Re: POP3 passwords Todd Troxell (Oct 20)
- Re: POP3 passwords JGrimshaw (Oct 20)
- Re: POP3 passwords Hendra Santosa (Oct 21)
- <Possible follow-ups>
- RE: POP3 passwords Dave Killion (Oct 20)
  - Re: POP3 passwords Meritt James (Oct 20)
  - RE: POP3 passwords Steve McLaughlin (Oct 21)
    - Re: POP3 passwords Francisco Andrades (Oct 21)
    - Re: POP3 passwords Simon Garner (Oct 21)
  - RE: POP3 passwords Golden_Eternity (Oct 22)
- RE: POP3 passwords Chris Merkel (Oct 20)

(Thread continues...)