On 2021-08-22 at 17:31:44 UTC-0400 (Sun, 22 Aug 2021 17:31:44 -0400) Gary Dale via Exim-users <g...@extremeground.com> is rumored to have said:
Here's the session, starting with the command and including entire output (only my customer's domain name has been removed)
The full credentials for that account have been exposed irretrievably to the world by the AUTH sequence in the session that you posted. The strings that look like garbage are just Base64-encoded version of username and password, with no encryption.
Obviously, you should change that password ASAP. -- Bill Cole b...@scconsult.com or billc...@apache.org (AKA @grumpybozo and many *@billmail.scconsult.com addresses) Not Currently Available For Hire -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
