Wireshark-users: Re: [Wireshark-users] from the past
From: Graham Bloice <graham.bloice@xxxxxxxxxxxxx>
Date: Wed, 24 Mar 2010 16:37:06 +0000
On 24/03/2010 16:25, M K wrote:
That is exactly what I am doing.  I log onto my Windows machine, then
my ISP, then my proxy.  Then maybe go to a few websites, for example.
Then maybe after a half hour, I may then start up a WS capture.
Still, even after all that time between logons and actually starting a
capture, the etherXXXXa tmp file still contains this private info.

According to Jeff, the etherXXXXa file only captures what is not
encrypted.  That makes this even more scary.  That means that not only
is the info being captured but it isn't even being protected by even
low-grade encryption.
What protocol is carrying this info, might it be POP3?

-- 
Regards,

Graham Bloice