Re: pop3 over telnet and clear text passwords
From: Murad Talukdar (talukdar_m_at_subway.com)
Date: 04/06/04
- Previous message: $uper$onic: "Re: Online Universities with Information Security Programs"
- In reply to: Cerberus: "Re: pop3 over telnet and clear text passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Cerberus" <cerberus4696@myrealbox.com>, <security-basics@securityfocus.com> Date: Tue, 6 Apr 2004 13:44:00 +1000
Thanks to everyone. I didn't know I could learn so much from one
question....
Murad Talukdar
----- Original Message -----
From: "Cerberus" <cerberus4696@myrealbox.com>
To: <security-basics@securityfocus.com>
Sent: Friday, April 02, 2004 3:43 PM
Subject: Re: pop3 over telnet and clear text passwords
> > I often use pop3 over telnet to check on email boxes some users have.(ie
> > that they've been setup properly) How do I mask the fact that the
> > username/password is transmitted as clear text?(If I can?)
>
> I don't believe you can. The username and password are transmitted in
> plain text in a normal POP3 session (one involving your email client).
> All that telnet provides is a means to send the POP3 commands directly
> from the keyboard to the server.
>
> -Matt
>
>
> --------------------------------------------------------------------------
-
> Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
> any course! All of our class sizes are guaranteed to be 10 students or
less
> to facilitate one-on-one interaction with one of our expert instructors.
> Attend a course taught by an expert instructor with years of in-the-field
> pen testing experience in our state of the art hacking lab. Master the
skills
> of an Ethical Hacker to better assess the security of your organization.
> Visit us at:
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> --------------------------------------------------------------------------
-- > > > --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
- Previous message: $uper$onic: "Re: Online Universities with Information Security Programs"
- In reply to: Cerberus: "Re: pop3 over telnet and clear text passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
