[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Securing POP3
"Peter L. Peres" <plp@actcom.co.il> writes:
> On Tue, 29 Dec 1998, Nadav Refaely wrote:
>
> > Hi,
> >
> > I would like to read my email via POP3 securely over a LAN. The sysadmin
> > has brought to my knowledge the SSH FAQ section 4.8, but the link
> > specified there is invalid. I tried looking for an updated version of the
> > FAQ, but the newest one seems to be from July '97.
> >
> > Does anybody use the scripts specified there and/or can tell where to get
> > them and/or can send them to me by email?
>
> I'm really interested in a way to read email *securely* using POP3 from a
> usual ISP...
>
> ;)
>
> Peter
And I would be grateful (I read my mail from an ISP with POP3) for an
explanation of why one would want to bother at all. If the mail is not
encrypted it can - in principle at least - be intercepted and read
before the transmission from the ISP to the user, so securing that
transmission will not make much of a difference, will it? Or did you
mean the password security? Then "man fetchmail" is your friend (the
parts about -I and APOP and Kerberos, I guess). However, .fetchmailrc
stores your password in clear text, and you are only as secure as the
ISP allows you to be.
--
Oleg Goldshmidt goldshmt@netvision.net.il
BLOOMBERG L.P. (BFM) oleg@bfr.co.il