Is cgminer authenticating securely when it does  ./cgminer -o stratum+tcp://stratum.kano.is:3333 -u Kano.worker -p x ?
I'm wondering if someone could sniff the password on the wire, then login to the web interface and change the payout address?
I don't have enough hashing power for it to matter much if someone were to do that to me, just curious, and I try to use ssl if available whenever I'm sending passwords.