Re: plaintext passwords - my 0.02c

From: Greg Thomas <thomasgd_at_omc.bt.co.uk>
Date: 2006-07-19 13:11:35 CEST

On Wed, 19 Jul 2006 13:45:06 +0300, Saulius Grazulis <grazulis@akl.lt>
wrote:

>Anyone gaining physical access to the disk or its copies
>(backups) will be able to retrieve the stored information, bypassing OS
>autentication, protection of the directories and so on.

This is not always true. A proper encryption scheme will only allow an
individual holding the correct password access to the data, short of a
lengthy brute-force attack.

I believe that this sort of scheme is what is used to store the
passwords on Win32 boxes.

Greg

-- 
This post represents the views of the author and does
not necessarily accurately represent the views of BT.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Wed Jul 19 13:12:57 2006

This message: [ Message body ]
Next message: Mark Ryan: "Re: plaintext passwords - my 0.02c"
Previous message: Indraveni: "svn: Connection closed unexpectedly"
In reply to: Saulius Grazulis: "Re: plaintext passwords - my 0.02c"
Next in thread: Ryan Schmidt: "Re: plaintext passwords - my 0.02c"
Reply: Ryan Schmidt: "Re: plaintext passwords - my 0.02c"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]