Date: Tue, 13 Apr 2004 11:03:23 -0700 From: John Fox <readbsd@mind.net> To: freebsd-isp@freebsd.org Subject: tcpdump for sniffing POP3 -- methods ? Message-ID: <20040413180323.GA13554@mind.net>
next in thread | raw e-mail | index | archive | help
We've got a Windows machine running IMail and authenticating POP3 from an NT Primary Domain Controller. Our plan is to move these users over to our UNIX system, but we don't have a record of their passwords. This means we need to either 1) Grab them out of the files on the PDC. (I think this is not possible.) 2) Obtain them by sniffing the POP3 traffic being sent to the Imail server. I think #2 is the only possibility, and I haven't made much use of tcpdump, so while I do know how to run it and specify a host to listen to, I've no idea how to isolate the clear-text stuff (containing the usernames and passwords) from all the other traffic. Any suggestions would be greatly appreciated. With thanks and regards, -John -- +---------------------------------------------------------------------------+ | John Fox <jjf @ mind.net> | System Administrator | InfoStructure | +---------------------------------------------------------------------------+ | I used to trust the media to tell me the truth, tell us the truth | | But now I've seen the payoffs everywhere I look | | Who can you trust when everyone's a crook? | | -- Queensryche, "Revolution Calling" | +---------------------------------------------------------------------------+
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040413180323.GA13554>