On Mon, 13 Oct 2003 10:45:47 +0800 "Ow Mun Heng" <ow.mun.heng@xxxxxxx> wrote: > Hi All, > > I've just joined into the wifi bandwagon with my own 'little' > setup > and am playing around with it(wifi + internet). What I'm concerned > with is the transmission security. (I know there's WEP but AFAIK WEP's > useless) > > I also know about POP mail access being in plaintext, so.. > yesterday, I did a little research on what I can "sniff" using > ethereal. I tried logging into my ISP's POP mailserver, fetched my > email and all that.. I wasn't very suprised when I found ethereal > logging my username & Password to the mailserver. I even found that > MSN/Gaim/Yahoo Messenger is also transmitting in Plain-text. Some > website addresses even shows up in ethereal when I access the internet > using the wifi conn. > You can set up an ssh tunnel and use pop over that. Though what I do is use pop on my (wired) desktop machine and then use imap over an ssh tunnel to read email on my (wireless) laptop. Something like ssh -C -N -f -L 8082:desktop:143 username@localhost This certainly works - how secure it is I've yet to determine. AirSnort doesn't work on my wireless card without modifying the drivers, something I've not yet had the enthusiasm to do. Regards, Chris -- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
