I hope this message makes it to the board without being censored.
I have found a security hole in Eudora 5x and 6x.
It involves the eudora.log
If you have more than one personality set up, and sometimes if you don't, your password is printed to eudora.log in plain text, unencoded, and without the "xxxxx".
I have reported this several times with no answer and no solution.
I do have a solution. In "Options" and "Logging", uncheck all the boxes and set the file size to 1 kb. This will prevent eudora.log from printing your password.
It is unbelievable to me that Qualcomm/Eudora has not responded to this hole anywhere on their site. I respect this business, and I continue to use Eudora. I'm just very careful.
This reminds me of one of their first versions I used, whee the password was printed in the eudora.ini file in plain text. Unreal man. Just unreal. They haven't advanced much at all as far as security goes.
By the way, the address I used when reporting this flaw is
darrelldmartin@yahoo.com