Great Circle Associates Firewalls
(November 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Plain-text passwords
From: Lawrence Beobachter <larry @ spmu . runnet . ru>
Date: Thu, 07 Nov 1996 13:22:49 +0300
To: firewalls @ GreatCircle . COM
References: <c=US%a=_%p=INTERGRAPH%l=HQ16-961106130521Z-11957 @ hq15 . pcmail . ingr . com> 
Hello!

I tried tcpdump on FreeBSD and it turned out that login information
during telnet sessions as well as USER and PASS info sent by pop-client
are both xmitted in plain text <shudder>.
Is there any solution besides S/Key (please, include pointers) to
block this don't-know-how-to-call-it hole.

Thank you
Regards
Follow-Ups:
References:
Indexed By Date Previous: POP and sendmail mods for no system accounts
From: Barry W Anderson <bwa @ shadow . dbapic . com . au>
Next: Re: Firewalls for NT
From: Sean Brandt <sean @ iis . net>
Indexed By Thread Previous: RE: PPTP setup
From: "Jarmon, Don R" <drjarmon @ ingr . com>
Next: Re: Plain-text passwords
From: Lyndon Nerenberg <lyndon @ esys . ca>
Google
 
Search Internet Search www.greatcircle.com