How does Geneos handle passwords that are used in database logging (and other related plugins)?

As to how the password is handled within Geneos and several components can be seen below:

1) In the gateway setup file - The password is either stored in plain text or standard encoding via UNIX crypt utility is used. 
2) Between the gateway and the GSE - The setup file is passed in plain text (over a compressed link). The encoding specified in (1) will be used if that is present in the file
3) Between the netprobe and the gateway - The password is either passed as plain text or encoded as in (1) depending on which option the client choose to use to save the password in the setup file.
4) Between the gateway/netprobe and the database - The native Sybase library is used to connect to the database. This provides any encryption that the server specifies.

Step 4 is what transpires between the gateway and the database during database logging and for the Sybase/SQLtoolkit plugins between the NetProbe and the database.

Steps 1-3 happen within the Geneos components.

The encoding does not provide any encryption though as we expect the file to reside inside the security zones of the bank. However it does guard against casual scanning of the file.