The Authenticate (Login) Window The authentication window appears when you need to prove your identity to a server or any process which requires that it be able to identify you. Authentication consists of two parts, a Username and a Password. Both of these should have been supplied to you and should be known to you already. There is no way in this program to register an identity or change your password. If you do not know this information, please contact your system administrator or Internet Service Provider for assistance. While this window is active, it has control of the keyboard and mouse. You must select a window or cancel to continue the program or use any other windows (except for this help window). Since logging in is so crucial an activity, this window has also been designed so that if you obscure it with another window, a timer is set to occasionally pop it into the foreground again. Once you have entered a name (perhaps supplied by default) and a password, select Accept to initiate the authentication. Select Cancel if you do not wish to (or are unable to) login at this time. There are two places in this program where you might be asked for authentication. In some cases, other authentication mechanisms might be in place, so you may not always be asked. 1. To open or access a mailbox on the mail server. 2. To fetch an external message via FTP. In each of these cases, this program will make the best guess as to what the Username should be for the service involved. If it is incorrect, you should change it. (You may also set this from the top-level Option->Configure menu so you don't have to always do this). You may or not have the same username and password for each service. Above the Username field is a line indicating which service and/or system is requesting your identity. The password should be known only to you. You will not see it displayed when you type it in. Instead, you will see a row of asterisks. You may backspace and delete to correct it if you think you typed it incorrectly. You should never give your password to anybody else, or write it down, or put it in a file. This is a secret you must memorize and keep to yourself. Otherwise, somebody else might be able to masquerade as you, and could cause damage to your files or reputation. This program will in a few cases store your login credentials (encrypted, of course -- and only in memory; not in a file), so that you do not have to enter them again for the same service. It will then re-use this information instead of asking you repeatedly. This is generally the case with mailbox access on a single server. If you select another server, you will be asked again. You will not be able to "change identity" on a particular mail server because of this storage. If more than one person is likely to use this program connected to the same mail server, you must either retstart the program, or create a unique Server Configuration for each person desiring access. FTP logins are not stored in this manner. Also, because of this storage, if the program ever terminates on you with a "core dumped" message, you should immediately remove the file named "core" from your home directory on the system running this program. Although your password is encrypted, the exact algorithm used isn't very secure, and is available to anybody who has program source code. If they can read the core file, a clever person can find out your password.