This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: encoding scripts (so that user can't see passwords easily)?

From: Jim Drash <jim dot drash at gmail dot com>
To: cygwin at cygwin dot com
Date: Tue, 6 Dec 2005 16:47:15 -0500
Subject: Re: encoding scripts (so that user can't see passwords easily)?
References: <4392D119.7080409@wpkg.org> <deca9ec80512042242h44317cexf2878291acddcc8a@mail.gmail.com> <7ff9c2a10512060949l72e9693bv251e0d46c36ea0e0@mail.gmail.com> <4395E827.4070804@wpkg.org> <61f6f4390512061158o5a2ef71by6e1a419c8e6499b3@mail.gmail.com> <20051206140214.A4275@reliant.immure.com> <4395F187.2020908@wpkg.org> <Pine.GSO.4.63.0512061540330.35@slinky.cs.nyu.edu> <61f6f4390512061320s512a55e8n84f27e486db0596@mail.gmail.com> <43960252.9010106@wpkg.org>

Can you make it harder? Yes. I can think of lots of ways to make it
harder.  The easiest is to prompt them for the userid and passwords
that they need when they need them and don't store them at all.


On 12/6/05, Tomasz Chmielewski <mangoo@wpkg.org> wrote:
> Jim Drash schrieb:
> > If someone can get physical access to the disk, then there is not a
> > single thing you can do to stop someone who is:
> >
> > 1) Knowledgeable
> > 2) Determined
> > 3) has time
> > 4) is a criminal
>
> But I could certainly stop someone who is *not* knowledgeable nor
> determined, and his "criminal cracking" gnowledge ends when he presses
> Enter after typing "grep -r password /".
>
> Why do you think mail clients, web browsers and other software don't
> store the passwords in plain?
>
>
>
> --
> Tomek
> http://wpkg.org
> WPKG - software deployment and upgrades with Samba
>
>

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

References:
- encoding scripts (so that user can't see passwords easily)?
  - From: Tomasz Chmielewski
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: nidhog
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Svend Sorensen
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Tomasz Chmielewski
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Jim Drash
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Wayne Willcox
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Tomasz Chmielewski
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Igor Pechtchanski
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Jim Drash
- Re: encoding scripts (so that user can't see passwords easily)?
  - From: Tomasz Chmielewski

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]