Re: Credentials held unencrypted in memory during runtime

From: Ron Wilson <ronw.mrmx_at_gmail.com>
Date: Tue, 12 Apr 2011 19:17:10 -0400

On Tue, Apr 12, 2011 at 4:29 PM, David Huang <khym_at_azeotrope.org> wrote:
> Then you said that this meant that SVN's password saving wasn't implemented
> correctly.

It was implied that the only thing needed to decode the cache was to
look at the source code. That implies that the key is fixed, easily
regenerated or easy to find, or that the algorithm is extremely weak.

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2719239

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2011-04-13 01:17:12 CEST

This message: [ Message body ]
Next message: David Huang: "Re: Credentials held unencrypted in memory during runtime"
Previous message: David Huang: "Re: Credentials held unencrypted in memory during runtime"
In reply to: David Huang: "Re: Credentials held unencrypted in memory during runtime"
Next in thread: David Huang: "Re: Credentials held unencrypted in memory during runtime"
Reply: David Huang: "Re: Credentials held unencrypted in memory during runtime"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]