Eset unencrypted user details

Discussion in 'ESET Smart Security' started by sladdy, Jun 12, 2013.

Thread Status:
Not open for further replies.
  1. sladdy

    sladdy Registered Member

    Joined:
    Jun 12, 2013
    Posts:
    1
    My IPS warns me about Eset Smart Security 6.0.316.3 sending unsecure authentication to Eset servers:

    Destination: 91.228.166.15:80
    Warning: 1:2006380 ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted.

    Should I be worried about attacks (i.e. mitm)?
     
    sladdy, Jun 12, 2013
    #1
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,456
    Although it's possible to eavesdrop the communication with update servers, "stealing" the username and password wouldn't give the potential attacker interesting benefits like it would be in case of financial transactions or other important and confidential data.
     
    Marcos, Jun 12, 2013
    #2
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...