[Users] [Bug 3099] Username and password stored in plain text

noreply at thewildbeast.co.uk noreply at thewildbeast.co.uk
Thu Mar 6 10:20:35 CET 2014


Ricardo Mones <mones at users.sourceforge.net> changed:

           What    |Removed                     |Added
           Severity|normal                      |enhancement

--- Comment #1 from Ricardo Mones <mones at users.sourceforge.net> ---
There's several layers of security before reaching your vcalendar password:
your home/office walls and door, your computer BIOS password, your disk
encryption password, your system account password, and an (optional) encrypted
filesystem loop-mounted on .claws-mail for storing Claws Mail config.

If you have all of these correctly set with strong (and different) passwords
(which I presume since you're concerned about security) I don't see why this is
so seriously insecure.

Said that I agree that not storing it in plain text would be a nice feature to
have, so setting it as enhancement.

You are receiving this mail because:
You are the assignee for the bug.

More information about the Users mailing list