[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-core-devel
Subject:    Re: Common string encryption
From:       Thiago Macieira <thiagom () wanadoo ! fr>
Date:       2003-05-20 8:23:25
[Download RAW message or body]


Michael Goffioul wrote:
>Is there a string encryption mechanism available in kdelibs. I want
>to store a password in a config file (upon request from the user, like
>in kmail), but I want to avoid to store it in clear form. A basic
>encryption would increase security a little bit. If if doesn't exist,
>this could be an addition to KStringHandler class. What do you think?

If you can use a one-way encryption or hash, it would be best, since the 
original password could not be retrieved from the written data. If you really 
need to store a password, then I'd suggest waiting a couple of months to see 
how far along KWallet comes.

I don't think this is the time to start writing encryption stuff into the core 
libraries if we are going to have an engine to handle passwords efficiently 
in the near future.

-- 
  Thiago Macieira  -  Registered Linux user #65028
   thiagom@mail.com           
    ICQ UIN: 1967141   PGP/GPG: 0x6EF45358; fingerprint:
    E067 918B B660 DBD1 105C  966C 33F5 F005 6EF4 5358

[Attachment #3 (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]