[Pidgin] #2037: Save passwords as md5-hash if supported by protocol

Pidgin trac at pidgin.im
Wed Jul 25 14:51:56 EDT 2007


#2037: Save passwords as md5-hash if supported by protocol
---------------------------+------------------------------------------------
  Reporter:  Nightmare     |       Owner:                   
      Type:  enhancement   |      Status:  new              
  Priority:  minor         |   Milestone:                   
 Component:  pidgin (gtk)  |     Version:  2.0.2            
Resolution:                |    Keywords:  md5 hash password
   Pending:  0             |  
---------------------------+------------------------------------------------
Comment (by deryni):

 If you can log in to the system by passing the hashed value directly then
 the hashed value *is* your password, and all you gain is having stored a
 less memorable password. The thing to notice is that if that is what you
 want then simply picking that less memorable password yourself *in the
 first place* is exactly equivalent and doesn't require pidgin to play any
 games.

 If someone has access to your computer there are many ways they can steal
 your password more easily than by quickly memorizing it, so no matter what
 your password is no longer secure.

-- 
Ticket URL: <http://developer.pidgin.im/ticket/2037#comment:6>
Pidgin <http://pidgin.im>
Pidgin


More information about the Tracker mailing list