Ok, here's the deal:
qmail-pop3d is NOT secure, nor are most other standard POP3 daemons. POP passwords are sent in cleartext and are not encrypted. They can be viewed by people snooping a connection (although this is not as easy as it sounds). A way of fixing this insecurity is to use SSL, an option many POP3 clients (including most Microsoft ones, and Netscape, AFAIK) offer (in Advanced options usually). They perform the POP3 operations over the Secure Socket Layer (that is SSL), however this requires quite some config which I personally have never done before, but I have heard of people doing it.
Look into it
Brett
Manager
InterPlanetary
Solutions
http://ipsware.com/
