I suggest you use use Windows trusted authentication, as then no login or password is required in the connection string, and neither is a package password, as there is no sensitive info. You really should stop using SQL Server logins (as opposed to windows logins) unless you have a very good reason.
Both SQL Servers will need to be part of the same domain, and you'll need to set the SQL Agent account to a windows account that has access to the required databases.