Pidgin storing password in plain text.

Jeff Sadowski jeff.sadowski at gmail.com
Tue Jun 26 15:57:03 EDT 2007


For one of my other scripts I used this method of getting my password

passwd=`cat ~/domainpassword.gpg | gpg2 --decrypt --use-agent`

and my password was stored using gpg2 --encrypt

I guess setting up gpg would be too complicated for normal people though huh :-/


On 6/26/07, Sean Egan <seanegan at gmail.com> wrote:
> On 6/26/07, Alagarsamy <alagar at yahoo-inc.com> wrote:
> >           I tried Pidgin-2.0 for linux. I find it really awesome. I
> > added my yahoo account and also added auto-login feature for this. When
> > i see the accounts.xml file in $HOME/.pidgin/accounts.xml, I shocked to
> > see that my password was stored in plain text.
>
> That shock is intended by design. See:
> http://developer.pidgin.im/wiki/PlainTextPasswords
>
> -s.
>
> _______________________________________________
> Devel mailing list
> Devel at pidgin.im
> http://pidgin.im/cgi-bin/mailman/listinfo/devel
>




More information about the Devel mailing list