[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #3064 [Vidalia]: Vidalia stores ControlPassword as plaintext
#3064: Vidalia stores ControlPassword as plaintext
--------------------------+-------------------------------------------------
Reporter: tornewbie | Owner: chiiph
Type: defect | Status: reopened
Priority: normal | Milestone:
Component: Vidalia | Version:
Resolution: | Keywords:
Parent: | Points:
Actualpoints: |
--------------------------+-------------------------------------------------
Comment(by arma):
Replying to [comment:4 chiiph]:
> How about add a label under the password setting saying:
> "WARNING: If you hand pick the password it will be saved as plain text
in Vidalia's configuration file. Using a random password or cookie auth is
safer."
Theorem: Using cookie auth is unsafe in exactly the same way as storing
your password to disk is unsafe.
True/false?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3064#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs