Changes between Version 19 and Version 20 of PlainTextPasswords


Ignore:
Timestamp:
08/08/15 21:35:13 (4 years ago)
Author:
mmcco
Comment:

section no longer relevant

Legend:

Unmodified
Added
Removed
Modified
  • PlainTextPasswords

    v19 v20  
    9898Then don't save your passwords in Pidgin or Finch.  As noted above, not saving the password is the default behavior.  This is another instance of "if someone else can access your files and you can't trust them not to misuse stored sensitive data, don't store the sensitive data."  Besides, you have to log in to your operating system anyway; it's not really going to kill you to have to type the same password one more time.
    9999
    100 == "Is that the final word?" ==
    101 
    102 No. The Pidgin developers are generally open to, and would encourage integration with keyrings (KeyringSupport). A keyring is an implementation of the first bullet point above. It would be used to cryptographically secure your password in a way that would generally be more secure (although not perfect). It would require a master password, shared amongst all the applications on your computer, to get at your passwords.
    103 
    104 The problem is that Pidgin runs on so many different environments, each of which has their own system for keyrings. It's difficult (but not impossible) to make Pidgin integrate with all of these, and still allow you to use one set of configuration files for each of them.
    105 
    106 If someone were to do this in a way that worked well, securely, and seamlessly to the user, without interfering with people who prefer to trust their file system's security, we'd gladly accept it.
    107 
    108100== DIGEST-MD5 in Jabber/XMPP ==
    109101
All information, including names and email addresses, entered onto this website or sent to mailing lists affiliated with this website will be public. Do not post confidential information, especially passwords!