Re: security problem (tcp/ip)
Carey Evans [EMAIL PROTECTED] writes: Frank Barknecht [EMAIL PROTECTED] writes: How do I forward pop3 over ssh? This is described in question C4 in the fetchmail FAQ (at least for version 4.3.6). Basically you need to install ssh on the client and sshd on the mail server (mailhost) and put something like this in your .fetchmailrc: poll mailhost port 1234 via localhost with pop3: preconnect ssh -f -L 1234:mailhost:110 mailhost sleep 20 /dev/null; The version of fetchmail in 1.3.1 might be too old for this. However, you can still do what I did with the 1.3.1 fetchmail. Our local friendly sysadmins already had sshd on the mailserver, so I compiled a copy of fetchmail in my ~/bin directory on the mailserver. Then, my /etc/ppp/ip-up script (this was under bo) did: HOME=~martind su martind EOD cd ~martind m4 -DIPADDR=$4 jhunix.fetchmailrc | \ ssh jhunix.hcf.jhu.edu 'umask 077; cat .fetchmailrc' ./bin/getmailloop EOD Where jhunix.fetchmailrc was a file that looked like this: poll localhost proto imap user xx with password is martind here smtphost IPADDR And ~/bin/getmailloop is just a script that every fifteen minutes does ssh jhunix.hcf.jhu.edu bin/fetchmail Of course, this requires that you set up passwordless logins with ssh for this to work; not everyone will let you do this. Now this still has all of your mail travelling over the network unencrypted; however, your username and password aren't ever sent over the network (except inside an ssh connection). -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: security problem (tcp/ip)
Frank Barknecht [EMAIL PROTECTED] writes: How do I forward pop3 over ssh? This is described in question C4 in the fetchmail FAQ (at least for version 4.3.6). Basically you need to install ssh on the client and sshd on the mail server (mailhost) and put something like this in your .fetchmailrc: poll mailhost port 1234 via localhost with pop3: preconnect ssh -f -L 1234:mailhost:110 mailhost sleep 20 /dev/null; The version of fetchmail in 1.3.1 might be too old for this. -- Carey Evans http://home.clear.net.nz/pages/c.evans/ GNU GPL: The Source will be with you... always. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: security problem (tcp/ip)
Carey Evans hat gesagt: // Carey Evans wrote: Benoit Joly [EMAIL PROTECTED] writes: i found that everyone on our hubs can get my ftp, and pop3 password so easy with a sniffer. can i do something against that, because now i dont trust tcpip transfert, it send all my user name and password in ascii code. Get ssh from a Debian non-US mirror. This will solve most of your problems. For pop3, you can forward it over ssh, or use something with APOP authentication if the content of your email isn't sensitive. How do I forward pop3 over ssh? -- a href=http://www.einblick.de/; Frank Barknecht Das Koelner Stadt- und Unimagazin - /a -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
security problem (tcp/ip)
hi, i found that everyone on our hubs can get my ftp, and pop3 password so easy with a sniffer. can i do something against that, because now i dont trust tcpip transfert, it send all my user name and password in ascii code. wow!! thanks Benoit Joly email: [EMAIL PROTECTED] -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: security problem (tcp/ip)
Benoit Joly [EMAIL PROTECTED] writes: i found that everyone on our hubs can get my ftp, and pop3 password so easy with a sniffer. can i do something against that, because now i dont trust tcpip transfert, it send all my user name and password in ascii code. Get ssh from a Debian non-US mirror. This will solve most of your problems. For pop3, you can forward it over ssh, or use something with APOP authentication if the content of your email isn't sensitive. You can also plant fake emails and see who's reading them by the rumors that start to spread... -- Carey Evans http://home.clear.net.nz/pages/c.evans/ GNU GPL: The Source will be with you... always. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: security problem (tcp/ip)
On Wed, Feb 25, 1998 at 03:28:26AM -0500, Benoit Joly wrote: hi, i found that everyone on our hubs can get my ftp, and pop3 password so easy with a sniffer. can i do something against that, because now i dont trust tcpip transfert, it send all my user name and password in ascii code. wow!! Use ssh, stelnet and sftp instead. And well, don't use pop. Or use switches instead of hubs. Regards, Joey -- / Martin Schulze * [EMAIL PROTECTED] * 26129 Oldenburg / / The MS-DOS filesystem is nice for removable media / / -- H. Peter Anvin / -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: security problem (tcp/ip)
Benoit Joly [EMAIL PROTECTED] writes: hi, i found that everyone on our hubs can get my ftp, and pop3 password so easy with a sniffer. can i do something against that, because now i dont trust tcpip transfert, it send all my user name and password in ascii code. wow!! I don´t know if there´s a free IMAP server flaoting around which supports SSL. HTH, Jens --- [EMAIL PROTECTED] [EMAIL PROTECTED] Key ID: 2048/E451C639 Jens Ritter Key fingerprint: 5F 3D 43 1E 24 1E CC 48 1E 05 93 3A A7 10 73 37 -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .