FWIW, this should not be able to happen with SSH unless you ignore the big, loud "the host identification has changed" warning that ssh throws up whenever it sees a new public key on the other side of the link, specificially in order to avoid this kind of attack (well, theoretically, to avoid man-in-the-middle attacks, but this wasn't all that dissimilar).
If you were pulling your mail over SSL, of course, this may not be sufficient -- I don't know nearly as much about how POP/SSL does host-based authentication.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
no subject
Date: 2005-01-17 02:35 pm (UTC)key on the other side of the link, specificially in order to avoid this kind of attack (well, theoretically, to avoid man-in-the-middle attacks, but this wasn't all that dissimilar).
If you were pulling your mail over SSL, of course, this may not be sufficient -- I don't know nearly as much about how POP/SSL does host-based authentication.