Active Topics
-
Nokia Booklet 3G (RX-75) Drivers (60)
to Alternatives by Maemish - 1 day, 5 hrs ago -
Is there a section to talk about Java ME? Apps, etc. (7)
to General by teroyk - 4 days, 2 hrs ago - more...
keesj |
2010-01-18
, 14:40
|
|
Posts: 26 |
Thanked: 44 times |
Joined on Apr 2008
@ Amsterdam
|
#101
|
How about killing this whole thread. Event the subject is plain wrong. Its not even an exploit.
| The Following 3 Users Say Thank You to keesj For This Useful Post: | ||
 |
|
2010-01-18
, 14:41
|
|
Posts: 2,355 |
Thanked: 5,249 times |
Joined on Jan 2009
@ Barcelona
|
#102
|
Originally Posted by slender
Again, back to the "and do you think anybody knowing where that file is wouldn't know how to 'decrypt' it?"
Do you know that there is different levels of security. I do know that these levels are unmeasurable`and subjective but if you really want to be safe I would probably not use computer and I would be living in small aluminium foil box in same place where air frances black box is.
If they were encrypted I would give device to SOME people.
Originally Posted by slender
They did it because of people glancing at them on the monitor, and also because then it can prompt for your master password. Nothing else.
Actually did you know that firefoxs password safe gui was "plain text" for awhile but they changed it so that you have press button before it shows passwords behind usernames. Is this completely stupid thing to do?
|
|
2010-01-18
, 14:42
|
|
Posts: 2,829 |
Thanked: 1,459 times |
Joined on Dec 2009
@ Finland
|
#103
|
Originally Posted by keesj
I agree that topic name is highly exaggerated.
How about killing this whole thread. Event the subject is plain wrong. Its not even an exploit.
 |
|
2010-01-18
, 14:47
|
|
Posts: 290 |
Thanked: 165 times |
Joined on Sep 2009
|
#104
|
guys the only way to fix this if unlocking the a locked phone (device lock of the settings) would use that lock code as a password to get the private key where everything can be decrypted with.
So how many that are now complaining do have enabled the device lock?
So how many that are now complaining do have enabled the device lock?
|
|
2010-01-18
, 14:48
|
|
Posts: 18 |
Thanked: 3 times |
Joined on Jan 2010
@ Varberg, Sweden
|
#105
|
Originally Posted by NvyUs
I believe the point is that if seeing the file you know it's an unsecure yet sensitive file if it's plaintext and will therefore treat it right. Were it obscured the regular user wouldn't realize the file had to be treated with care since he or she wouldn't know it wasn't secure and wouldn't know what it contained.
well most off us until today have been duped already by option A. thinking they was safe
I'm sure if many people knew was told option B before they hit submit to purchase they would not of got the device at all
Now the reverse would also be true, a criminal might not know what it contained right away if it were obscured, but it's a safe bet he would steal the obscured files anyway and go play.
This doesn't mean there's no point having any kind of security system but the very best though. Awareness of how secure you truly are is what's important, what/who you are protected against. Obscurity/weak security really doesn't help this in most cases.
|
|
2010-01-18
, 14:50
|
|
Posts: 116 |
Thanked: 86 times |
Joined on Dec 2009
@ New Orleans, LA, USA
|
#106
|
Originally Posted by slux
Well, no point in making it idiot capable.
Well, to put things into perspective I believe that not having them there in plaintext would only serve as making it slightly more difficult to do this as the software still has to decrypt and send the passwords when logging in and it would not be a major problem to snatch them if you have physical access to the system said software is running on.
Last edited by shinkamui; 2010-01-18 at 14:51. Reason: Wow, embarrasing Typo...
 |
|
2010-01-18
, 15:25
|
|
Posts: 445 |
Thanked: 572 times |
Joined on Oct 2009
@ Oxford
|
#107
|
Originally Posted by slux
OK; but what's the counter-argument to the people that are actually calling for a proper solution using real encryption?
As has been said, most were not calling for a non-trivial form of encryption but a trivial form that is better called obfuscation.
Using base64 or ROT13 is clearly stupid, but using the approach that Kwallet, Firefox (with a master password) etc. use is a bad idea because?......
|
|
2010-01-18
, 15:35
|
|
Posts: 30 |
Thanked: 11 times |
Joined on Dec 2009
@ Bronx, NY
|
#108
|
I have never backed up. I have never updated. my passwds are stored very nice and clear.
|
|
2010-01-18
, 16:15
|
|
Posts: 98 |
Thanked: 31 times |
Joined on Nov 2009
|
#109
|
I was always taught that security is implemented in multiple layers like an onion... Lots of little things add up to a more secure system. I guess some people know much better and that security is either on or off 
|
|
2010-01-18
, 16:34
|
|
Posts: 24 |
Thanked: 2 times |
Joined on Jan 2010
|
#110
|
My password was showing but I added the MSN account again, after the 1.1 upgrade, and the password isn't there. My n900 locks after 5 mins anyway.
On my Linux PC there are services with plain text passwords in /etc. I just never leave my user logged in when I'm not there, same goes for the phone, but its not really a phone and I guess some people just don't get that.
On my Linux PC there are services with plain text passwords in /etc. I just never leave my user logged in when I'm not there, same goes for the phone, but its not really a phone and I guess some people just don't get that.
 |
| Tags |
| conversations, debate, email, fremantle, instant message, instant messaging, maemo, maemo 5, modest, password, passwords, plain text, security, telepathy |
«
Previous Thread
|
Next Thread
»
|
All times are GMT. The time now is 14:26.