[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kfm-devel
Subject:    Re: Caching sensitive information?
From:       Alex Zepeda <garbanzo () hooked ! net>
Date:       1999-04-08 18:37:59
[Download RAW message or body]

On Thu, 8 Apr 1999, Waldo Bastian wrote:

> It's basically the same problem as with cookies. I think having a
> daemon/CORBA service around which maintains them would be the way to
> go. Optionally this thing can save them to a file using some sort of
> encryption. I am not too thrilled about storing passwords in plaintext
> files.

Well, somehow I think cookies aren't as sensitive, but still, I see your
point. :)

I'm not too queasy about storing plaintext passwords and such because if
the file is mod 0600, who else besides root and you would be able to see
the file?  And if you don't trust root...

- alex

[prev in list] [next in list] [prev in thread] [next in thread]