I sent the link because unless you read the article completely, it can
be confusing.
As I read it, the POP3 weakness is just used to reveal the passwords,
once you have those, you can obviously access any Gmail account via HTTP
or POP3.
--
Peter van Houten
On the 06/08/2009 15:41, Ben Scott wrote the following:
On Thu, Aug 6, 2009 at 7:06 AM, Peter van Houten<peter...@gmail.com> wrote:
Security heads up. From last month but only came to my notice today.
http://seclists.org/fulldisclosure/2009/Jul/0254.html
Short version: Gmail's interface for POP3 clients is relatively
unguarded against brute-force password cracking attempts. If you
don't have POP3 enabled you're safe.
-- Ben
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
