[ILUG] fetchmail security...
murtaghn at tcd.ie
Thu Jan 17 12:05:07 GMT 2002
On Thursday 17 January 2002 11:40, kevin lyda wrote:
> yes, and i've understood why fetchmail does what it does. cvs has a
> similar problem which they just obscure in their .cvspass files, and
> in some ways i like the fact that fetchmail never did that. but still,
> i've always wanted to avoid it.
I have an account on a machine where I was running fetchmail, I had at
least three different passwords in .fetchmailrc. When the time came to
upgrade the machine the admins copied all the files across to the new box in
some really broken way resulting in .fetchmailrc (and other things)
being world readable... doh!
More information about the ILUG