»Michel Eyckmans (MCE)« sagte am 2002-03-03 um 18:40:16 +0100 :
Finally, it can't harm to have two locks on the same door. It's not
as if people haven't ever accidently chmod-ed things without noticing.
I know I have.
Yes, so do I. But if you'd 777 ~/.fetchmailrc, fetchmail will not run:
chmod 777 ~/.fetchmailrc ; fetchmail
File /home/askwar/.fetchmailrc must have no more than -rwx--x--- (0710)
permissions.
But as I understand it, you don't trust your root's, correct? Well,
dunno, but you do know that even if fetchmail would store the password
encrytped, it would be rather easy to sniff the password, don't you?
The real issue I have with POP3/IMAP in their unencrypted forms is, that
they require unencrypted passwords over the wire. If the password would
be sent encrypted, then I'd agree that storing the password in
plain-text is a bad idea. But until that happens, having the password
be encrypted just adds a false sense of security.
Alexander Skwar
--
How to quote: http://learn.to/quote (german) http://quote.6x.to (english)
Homepage: http://www.iso-top.de | Jabber:
askwar(_at_)charente(_dot_)de
iso-top.de - Die günstige Art an Linux Distributionen zu kommen
Uptime: 1 day 9 hours 8 minutes