Some error or what?:)
John Bailey
rekkanoryo at rekkanoryo.org
Thu Apr 1 10:15:30 EDT 2010
On 04/01/2010 10:02 AM, Gábor, Rónay wrote:
<snip>
>>>>>>>>>> <password>habalakevinhabala55</password> <<<<<<<<<<<<<<<<<<<< HERE IS MY
> MESSENGER PSSWD WITHOUT ANY PROTECTION :)
>
> <alias>Minden M$ program egy rakás szar</alias>
> <statuses>
> <status type='available' name='Elérhető' active='true'>
> <attributes>
> <attribute id='message' value='Nem vagyok itt'/>
> -----------------------------------------
>
> Is it right?
Yes. Did you not read the text on
http://developer.pidgin.im/wiki/SecurityVulnerabilityProcess that clearly
explains we do not consider this a security problem? The text is as follows:
Before informing us of security vulnerabilities, please be aware that we will
NOT consider our storage of passwords in plain text a security issue. We have
discussed our position on this at length here[1] and our position on this has
not changed. We will, at a future date, be implementing proper integration with
password safes such as gnome-keyring, however that support is not yet ready for
general consumption. Please do not report this particular issue as a security
problem.
[1] http://developer.pidgin.im/wiki/PlainTextPasswords
John
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <http://pidgin.im/cgi-bin/mailman/private/security/attachments/20100401/f2d9dd62/attachment.pgp>
More information about the security
mailing list