On Wed, Feb 06, 2008, Fajar Priyanto wrote: >Hi all, >As long as I can remember reading various articles/docs, they all say that >telnet is not secure because all traffic is in clear text. Well, out of >boredom, I try to sniff username and password from a telnet session. Another program I like for things like this is tcpflow which takes the same command line arguments as tcpdump, but creates separate files for each side of a tcp connection. It displays the data in plain text which makes debugging things like unencrypted imap and pop connections fairly easy. Bill -- INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The very powerful and the very stupid have one thing in common. Instead of altering their views to fit the facts, they alter the facts to fit their views ... which can be very uncomfortable if you happen to be one of the facts that needs altering. -- Doctor Who, "Face of Evil"