People use POP email at work all the time. I can see their plaintext passwords c... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		freehunter on March 21, 2013 \| parent \| context \| favorite \| on: PyCon Code of Conduct changed to avoid public sham... People use POP email at work all the time. I can see their plaintext passwords coming through the network monitor (which it's my job to review), and I've seen some patently offensive passwords being used. This brings up two of your points: First, I ignore the fact that I can see their username and password. The responsible thing to do is to completely forget that you can see it. I have no business with their login information. I'm completely aware that the only thing I can do with this information will cause damage to myself and to the person who unwittingly gave me this information. Secondly, I ignore the words on the screen. Because it's not something that was designed for me to see in the first place.

rbanffy on March 21, 2013 [–]

Shouldn't you advise them to use POP over SSL?

freehunter on March 21, 2013 | [–]

We can advise them to use whatever we want, the trick is getting them to listen. Our corporate email disallows POP, but we aren't in the business of blocking their personal email on our non-secure network.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact