From 8e0cbf344748bf474f993eb54868c347357c1c71 Mon Sep 17 00:00:00 2001
From: "Eric S. Raymond" <esr@thyrsus.com>
Date: Thu, 15 Mar 2001 06:39:11 +0000
Subject: Stronger security recommendations.

svn path=/trunk/; revision=3262
---
 fetchmail.man | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/fetchmail.man b/fetchmail.man
index 746acdc1..78275757 100644
--- a/fetchmail.man
+++ b/fetchmail.man
@@ -2080,7 +2080,10 @@ and FreeBSD, the --interface option can be used to restrict polling to
 availability of a specific interface device with a specific local or
 remote IP address, but snooping is still possible if (a) either host
 has a network device that can be opened in promiscuous mode, or (b)
-the intervening network link can be tapped.
+the intervening network link can be tapped.  We recommend the use of
+.IR ssh (1)
+tunnelling to not only shroud your passwords but encrypt the entire
+conversation.
 .PP
 Use of the %F or %T escapes in an mda option could open a security
 hole, because they pass text manipulable by an attacker to a shell
@@ -2117,7 +2120,7 @@ ODMR is very new.  The ODMR code is untested.
 The `principal' option only handles Kerberos IV, not V.
 .PP
 Send comments, bug reports, gripes, and the like to the
-fetchmail-friends list <fetchmail-friends@ccil.org>.  An HTML FAQ is
+fetchmail-friends list <fetchmail-friends@lists.ccil.org>.  An HTML FAQ is
 available at the fetchmail home page; surf to
 http://www.tuxedo.org/~esr/fetchmail or do a WWW search for pages with
 `fetchmail' in their titles.
-- 
cgit v1.2.3