Search  Rules  Login
TheBat English » The Bat! - Configuring the E-mail Client
Pages: 1
RSS
pop passwords in protocol logs, passwords are showing in logs. Seems there's no way to hide them
 
#1
0  
Been using TB! almost since 'the beginning' and now I'm I'm using the Xmas Edition of TB Pro (3.95.6)! Everything is fine for me, except that I do not see any option in TB! to hide pop passwords in protocol log files.

I was monitoring activity on the protocol log files for all of my accounts in TB! with a program called ABLogFile and noticed that the passwords are stored in the logs in plain text. This makes using protocol logging a huge security risk.

Am I missing an option somewhere, or is there no way to hide the passwords in logs?

---
Simon
 
 
 
#2
0  
The protocol log files are intended for debugging purposes when you're experiencing problems. In those cases I can imagine that it can be necessary to see the password that is sent by TB.
I see no reason to use protocol logging at all when you aren't experiencing any problems. After all why would you want a copy of every message you send or receive in your log files.
So I'd disable protocol logging if I were you.
__________________________________
I'm just a user of The Bat! I don't work for Ritlabs.
 
 
 
#3
0  
Thanks for your response, but with all due respect, I stated that I was monitoring activity...indicating that I wasn't just selecting the option to have log files created :-/ Regardless of whether you are or are not using the logging feature for the purpose you describe, a simple warning message under the folder fields indicating to the TB! user that enabling the protocol logging feature will also store their pop login pws would be a good idea...and a button to clear the logs.

As I said, IMO it is a security risk to a) not have the pws obfuscated, b) offer no warning to the TB! user that the passwords will be stored in the logs in plain text c) offer no quick way to erase the logs after using the feature.

---
Edited: Private Ofcourse - 08 May 2009 02:06:33
 
 
 
Pages: 1