Apparently using POP unencrypted is another big no-no.
3.2.6. POP credentials transmitted unencrypted (pop-plaintext-auth)
Description:
The server supports authentication methods where credentials are sent in
plaintext over unencrypted channels. If an attacker can
intercept traffic between a client and this server, the credentials would
be exposed.
Affected Nodes: Additional Information:
xxx.xxx.xxx.xxx:110 Running POP serviceConfiguration item
pop.plaintext.authentication set to 'true'
matched
Rob Berendt
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.