Thank you for the warning.   I was not aware the address and password were in such a file as the session log file until it was suggested, and then they seemed to have disappeared between the discarded values from 2003 and today, which is why I thought there was no problem in pasting the text lines.    I have deleted the lines mentioned, but now I can access my ISP profile to apply changes and shall be more careful in future.

I've looked in the PM Help menu and in the downloaded PMail Manual, but unfortunately  it just refered to a password for encryption of messages not the server access password.

Thanks for the help.

Rodney Fry

My present PM is running OK on my Win XP SP3 system and on my wife's laptop with Win 8-64 bit.  I now have a new Win 7 Prof.- 64 bit desktop to replace the Win XP machine.

I have moved my PM messages across to the Win 7 and in trying to sort out my connection to my ISP server it seems the password setting for my POP3 and SMTP access is not what I had written down.    I am reluctant to go through the process of changing my password via my ISP which requires changing my PM settings in case I lose access completely with the presently working Win XP and Win 8 machines.

I assume somewhere in the PM files there is a clear version of the password in the POP3/SMTP dialogue windows.   At the moment the password characters  shown are hidden by eight vertical black bars.

 Is the password held in the clear in one of the PM folders/files in my C:\PegasusMail\Programs.

Rodney Fry

[quote user="CRFry"]Is the password held in the clear in one of the PM folders/files in my C:\PegasusMail\Programs.[/quote]

No, it's not - and it shouldn't, by no means! You can retrieve the clear text, though, by enabling Internet session logging at the bottom of Tools => Internet options => General and looking for (plain text) files with names like TCPxxxx.WPM in your home mailbox directory (the "xxxx" is replaced by four digits) if using Pegasus Mail versions below v4.7 or the files located in a subdirectory called ...\TCPLogs\ in your home mailbox directory of Pegasus Mail v4.7: Logging files are created whenever sending or retrieving mail from you active mail host. To find your home mailbox directory use the Pegasus Mail menu entries Help => About Pegasus Mail ... => Info button. Session logging is automatically turned off after restarting Pegasus Mail if you don't disable it manually.

Thanks for the fast response, Michael!

 I have ticked the box for Internet logging, and sent two messages and found in C:\PegasusMail Messages a file TCP001.WPM, some 360kB, with today's date.   [Not sure why, but there were files TCP002 to 008.WPM in the folder from 2003 -  I seem to recall a problem with resetting my PM and H. van de Bogaerde kindly advised me at the time and prsumably told me to tick the Internet Logging Box].    Looking through this file at the very end I found some code lines with today's date, but the others were were all dated 2003.

These old lines contained:
 
--- Mon, 06 Jan 2003 19:03:26 ---
Connect to 'pop3.themutual.net' port 110, timeout 100.
19:03:27.953 >> 0026 +OK Tiscali POP3 server.\0D\0A
19:03:27.953 << 0017 USER tmn0009144\0D\0A
19:03:27.060 >> 0024 +OK Password required.\0D\0A
19:03:27.060 << 0013 PASS 4hg3pp\0D\0A
19:03:27.183 >> 0016 +OK logged in.\0D\0A
19:03:27.184 << 0006 STAT\0D\0A
19:03:27.283 >> 0012 +OK 1 2063\0D\0A
19:03:27.283 << 0006 LIST\0D\0A
19:03:27.393 >> 0055 +OK POP3 clients that break here, they violate STD53.\0D\0A
19:03:27.393 >> 0008 1 2063\0D\0A
19:03:27.393 >> 0003 .\0D\0A
19:03:27.395 << 0008 RETR 1\0D\0A
19:03:27.738 >> 0025 +OK 2063 octets follow.\0D\0A
19:03:27.738 >> 0034 Return-path: <g3ikr@thersgb.net>\0D\0A
19:03:27.738 >> 0034 Envelope-to: crfry@themutual.net\0D\0A
......................................

This email address and password from 2003 - [PASS 4hg3pp  ?]  -  are no longer in use.

Closing PM and re-opening I sent another message and found TCP002 with today's date.  

The lines generated at the end of this new file with today's date are:

--- Sun, 25 Jan 2015 14:59:32 ---
Connect to 'mail.btinternet.com' port 25, timeout 90.
14:59:34.609 [*] Connection established to 65.20.0.43
14:59:34.625 >> 0055 220 rgout02.bt.lon5.cpcloud.co.uk ESMTP Service ready\0D\0A
14:59:34.640 << 0021 EHLO [192.168.1.64]\0D\0A
14:59:34.656 >> 0035 250-rgout02.bt.lon5.cpcloud.co.uk\0D\0A
14:59:34.656 >> 0009 250-DSN\0D\0A
14:59:34.656 >> 0014 250-8BITMIME\0D\0A
14:59:34.656 >> 0016 250-PIPELINING\0D\0A
14:59:34.656 >> 0016 250-AUTH=LOGIN\0D\0A
14:59:34.656 >> 0022 250-AUTH LOGIN PLAIN\0D\0A
14:59:34.656 >> 0019 250-DELIVERBY 300\0D\0A
14:59:34.656 >> 0019 250 SIZE 41943040\0D\0A
14:59:34.656 << 0012 AUTH LOGIN\0D\0A
14:59:34.671 >> ***************************************

14:59:34.765 >> 0037 235 LOGIN authentication successful\0D\0A
14:59:34.765 << 0043 MAIL FROM:<XXXXX@btinternet.com> SIZE=783\0D\0A
14:59:34.781 >> 0041 250 MAIL FROM:<XXXX@btinternet.com> OK\0D\0A
14:59:34.781 << 0039 RCPT TO:<YYYYYY@btinternet.com>\0D\0A
14:59:34.796 >> 0046 250 RCPT TO:<YYYYYY@btinternet.com> OK\0D\0A
14:59:34.796 << 0006 DATA\0D\0A
..........................................

 This file appears to not record the PASSWORD, at least I cannot see any line with the heading "PASS" as in 2003?

Can you suggest any other file location?

Many thanks

Rodney Fry

You are going to have to change your password now because you have publicly published it.  It is encoded (Base 64) in the session log content you posted and can be easily decoded. by anyone.   A web search will turn up sites that decode.  The four lines following the one containing "AUTH LOGIN" are the ones transmitting username and password.  You now have what you need to figure out the password unfortunately so does anyone who sees your post.

BTW, there are numerous threads that contain warnings about posting the content of a session log.  Also, the help file states the fact that passwords get logged.  I hate it for you that you missed these warnings.

I really didn't expect the logs to be posted here, sorry.