At 01:44 PM 4/13/2004, Rob Funk wrote:
Evan Cooch wrote:
> This works fine, but I'm wondering about the security of having my
> password sitting in plaint text in my .fetchmailrc file. Are there
> obvious things I could do to eliminate the need to do this? Some way to
> interface fetchmail with pgp, or some such?
The best you can do is put your password in a separate .netrc file instead
of .fetchmailrc. That way you can let people see your fetchmail
configuration without seeing your password, while keeping your .netrc
better-protected.
.netrc has lines that look like:
machine machine.goes.here login xyz123 password blahblahblah
Thanks - although I suppose one could argue that if someone has the ability
to access .fetchmailrc, then .netrc won't be any safer. Perhaps I'm
missing something, though...
At any rate, fetchmail is chugging along nicely. it plays nice with our
TLS/SSL servers, which is about all I can hope for at this stage.