--- martin f krafft <[EMAIL PROTECTED]> wrote:
> also sprach Miriam Ruiz <[EMAIL PROTECTED]>
> [2005.04.16.1610 +0200]:
> > ~/.cycle/username can be easily retrieved just
> using a
> > python's module and knowing the password. I
> wouldn't
> > like such sensitive data to be stored in plain
> text in
> > a file.
>
> Why the heck is it password protected anyway? It's
> already in the
> home directory, so ~/.cycle should be permission
> 700. And root can
> get at the data with or without password (just wait
> until you enter
> it, then get the data from memory).
>
> I understand it's somewhat personal data, but not
> really much more
> than your email and the like.
>
> Symmetric password encryption must die!
Hi again :)
Keep in mind that the program is multiplatform and it
is also developed for windows and other OSes. Also,
data for more than one user can be stored.
I think that maybe you're asking for a full redesign
of the program, but that's something i cannot do on my
own, that's upstream's task. Anyway if you have better
design ideas and you want me to send them so upstream,
I'd be glad to do it.
Greetings,
Miry
______________________________________________
Renovamos el Correo Yahoo!: ˇ250 MB GRATIS!
Nuevos servicios, más seguridad
http://correo.yahoo.es
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
