Trac is being migrated to new services! Issues can be found in our new YouTrack instance and WIKI pages can be found on our website.

Changes between Version 10 and Version 11 of PlainTextPasswords


Ignore:
Timestamp:
Sep 18, 2008, 3:33:44 AM (15 years ago)
Author:
John Bailey
Comment:

Fix a reference to "gaim"

Legend:

Unmodified
Added
Removed
Modified
  • PlainTextPasswords

    v10 v11  
    55The reasoning for this is multi-part.
    66
    7 Instant messaging is not very secure, and it's kind of pointless to spend a lot of time adding protections onto the fairly strong file protections of UNIX (our native platform) when the protocols themselves aren't all that secure.  The way to truly know who you are talking to is to use an encryption plugin on both ends (such as OTR or gaim-encryption), and use verified GPG keys.  Secondly, you shouldn't be using your instant messaging password for anything else.  While some protocols have decent password security, others are insufficient and some (like IRC) don't have any at all.
     7Instant messaging is not very secure, and it's kind of pointless to spend a lot of time adding protections onto the fairly strong file protections of UNIX (our native platform) when the protocols themselves aren't all that secure.  The way to truly know who you are talking to is to use an encryption plugin on both ends (such as OTR or pidgin-encryption), and use verified GPG keys.  Secondly, you shouldn't be using your instant messaging password for anything else.  While some protocols have decent password security, others are insufficient and some (like IRC) don't have any at all.
    88
    99There are basically four approaches to password storage.[[BR]]
All information, including names and email addresses, entered onto this website or sent to mailing lists affiliated with this website will be public. Do not post confidential information, especially passwords!