Plaintext passwords in Gaim

Adriano Varoli Piazza moranar at
Fri Dec 15 07:19:06 UTC 2006

On 12/15/06, Anthony Yarusso <tonyyarusso at> wrote:
> Hash: SHA1
> I noticed quite some time ago that gaim stores account passwords in
> plaintext (~/.gaim/accounts.xml).  Is there any way around this?
> Digest-style authentication of some sort?

It's a Gaim FAQ, so go check them. If memory serves, the only protocol
as of then supported by Gaim and "secure" in the sense you mean is
SILC. Basically, for the reasons Adam Conrad mentions, Gaim developers
think it's useless and wrong (because it would give a false sense of
security) to encrypt passwords in some way when, as Adam says, they
have to transmit them in the clear.

Adriano Varoli Piazza
The Inside Out:
MSN - GTalk - Jabber: moranar at
ICQ: 4410132

More information about the ubuntu-users mailing list