Plaintext passwords in Gaim
Adriano Varoli Piazza
moranar at gmail.com
Fri Dec 15 07:19:06 UTC 2006
On 12/15/06, Anthony Yarusso <tonyyarusso at earthlink.net> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I noticed quite some time ago that gaim stores account passwords in
> plaintext (~/.gaim/accounts.xml). Is there any way around this?
> Digest-style authentication of some sort?
It's a Gaim FAQ, so go check them. If memory serves, the only protocol
as of then supported by Gaim and "secure" in the sense you mean is
SILC. Basically, for the reasons Adam Conrad mentions, Gaim developers
think it's useless and wrong (because it would give a false sense of
security) to encrypt passwords in some way when, as Adam says, they
have to transmit them in the clear.
--
Adriano Varoli Piazza
The Inside Out: http://moranar.com.ar
MSN - GTalk - Jabber: moranar at gmail.com
ICQ: 4410132
More information about the ubuntu-users
mailing list