Re: Current network-password-saving feature needs improvement.

From: Michael Meeks <michael ximian com>
To: Hema Seetharamaiah <hema seetharamaiah wipro com>
Cc: Sean Middleditch <elanthis awesomeplay com>, Bruce Robert Pocock <brpocock 10east com>, desktop-devel-list gnome org, gnome-devel <gnome-devel-list gnome org>
Subject: Re: Current network-password-saving feature needs improvement.
Date: 19 Jul 2002 10:27:45 -0400

Hi Hema,

On Fri, 2002-07-19 at 08:21, Hema Seetharamaiah wrote:
> Correct, a root can record all that I type if she so wishes. But that
> means she needs to know enough about recording by setting up a program
> or X modification ahead of time.

	Please stop this guff. Root can do anything; they can snapshot all the
core memory, swap - if they're lucky fire up a debugger, and invoke the
"trivial_demangle_password" method, on whatever piece of memory it's
stored in.

	Again, please ignore the 'protect against root' issue, it's a total
red-herring. We should (perhaps) do a rot13 or somesuch on the stored
pwd though.

	Regards,

		Michael.

-- 
 mmeeks gnu org  <><, Pseudo Engineer, itinerant idiot

References:
- Current network-password-saving feature needs improvement.
  - From: Hema Seetharamaiah
- Re: Current network-password-saving feature needs improvement.
  - From: Sean Middleditch
- Re: Current network-password-saving feature needs improvement.
  - From: Bruce Robert Pocock
- Re: Current network-password-saving feature needs improvement.
  - From: Sean Middleditch
- Re: Current network-password-saving feature needs improvement.
  - From: Hema Seetharamaiah

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]