[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: SMT auth not encrypted?

From: miguel dilaj pharma novartis com
To: enigma-list redhat com
Subject: Re: SMT auth not encrypted?
Date: Thu, 31 Jan 2002 08:47:19 -0300


Rodolfo J. Paiz wrote:
>>      Reading through Rodolfo's tutorial, I get the impression that the
>>passwords would go across the net in the clear?  If so, what's the best
>>way to have them encrypted?
>
>Your impression is almost correct. AUTH sends things encoded in Base64, so
>they won't be obvious to your grandma but they *will* be decodable in
>milliseconds by anyone who bothered to sniff the network. Really they're
>encoded only to make sure the characters you typed get across perfectly no
>matter what they are.

My grandma wrote this Perl code ;-)

#!/usr/bin/perl
use MIME::Base64;
print decode_base64("_insert_MIME_encoded_here_");

She has no previous Perl experience, so the code isn't perfect (you've to
paste the Base64 into the code each time you use it).
Cheers,

Miguel Dilaj

Follow-Ups:
- Re: SMT auth not encrypted?
  - From: Rodolfo J. Paiz

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]