>>> Gavin Scott <[log in to unmask]> 06/12 11:42 AM >>>
[snip]
>An encrypted login process is not of much value if the actual
>session will be conducted in the clear once the user is authenticated,
>
>G.
Password encryption is still better than no encryption at all, since learning the password will usually give the "hacker" access to far more information that what may be transmitted in the current terminal session. For example, sniffing out the MANAGER.SYS password would be of far greater benefit to the hacker than eavsdropping on some minor systems management function that I may have been performing when he/she sniffed the password. However, Gavin's point is well taken. The F-Secure product that I mentioned in my e-mail to Wirt does full encryption of the terminal session, which is what would be ideal for QCT (or Reflection or MS 92, or whatever).
Gary
Gary Dietz
Walla Walla College
[log in to unmask]
!