[sip-comm-dev] RE : Re: [sip-comm-dev] Password Storage: Week 2


#1

I might be wrong but aren't we taking more risks by storing the password
somewhere (even if it's cyphered) ?

На 20.05.10 18:41, Dmitri Melnikov написа:

Hi,
Thanks for the quick feedback.

Encrypted using what key? Are you using the password itsel...

Oh, then that's even better.

It's just one way to check it's correctness.
Still, I need some boolean property (MASTER=true?)...

Sounds great to me!

Cheers,
Emil

···

Le 20 mai 2010 18:51, "Emil Ivov" <emcho@sip-communicator.org> a écrit :

that tells me if
we're using a user defined master password or the default one (So that
we ca...

--

Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead ...


#2

I think Emil was referring to the fact that we can use exceptions to
detect wrong passwords.
But, sure, I agree that if there's no need to store the password then
it's better not to do it.

···

On Thu, May 20, 2010 at 9:30 PM, Benoit Pradelle <b.pradelle@gmail.com> wrote:

I might be wrong but aren't we taking more risks by storing the password
somewhere (even if it's cyphered) ?

Le 20 mai 2010 18:51, "Emil Ivov" <emcho@sip-communicator.org> a écrit :

На 20.05.10 18:41, Dmitri Melnikov написа:

Hi,
Thanks for the quick feedback.

Encrypted using what key? Are you using the password itsel...

Oh, then that's even better.

It's just one way to check it's correctness.
Still, I need some boolean property (MASTER=true?)...

Sounds great to me!

Cheers,
Emil

that tells me if
we're using a user defined master password or the default one (So that
we ca...

--

Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead ...

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@sip-communicator.dev.java.net
For additional commands, e-mail: dev-help@sip-communicator.dev.java.net


#3

На 20.05.10 21:56, Dmitri Melnikov написа:

I think Emil was referring to the fact that we can use exceptions to
detect wrong passwords.

Exactly. Glad to see we are all on the same page :slight_smile:

Emil

···

But, sure, I agree that if there's no need to store the password then
it's better not to do it.

On Thu, May 20, 2010 at 9:30 PM, Benoit Pradelle <b.pradelle@gmail.com> wrote:

I might be wrong but aren't we taking more risks by storing the password
somewhere (even if it's cyphered) ?

Le 20 mai 2010 18:51, "Emil Ivov" <emcho@sip-communicator.org> a écrit :

На 20.05.10 18:41, Dmitri Melnikov написа:

Hi,
Thanks for the quick feedback.

Encrypted using what key? Are you using the password itsel...

Oh, then that's even better.

It's just one way to check it's correctness.
Still, I need some boolean property (MASTER=true?)...

Sounds great to me!

Cheers,
Emil

that tells me if
we're using a user defined master password or the default one (So that
we ca...

--

Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead ...

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@sip-communicator.dev.java.net
For additional commands, e-mail: dev-help@sip-communicator.dev.java.net

--
Emil Ivov, Ph.D. 67000 Strasbourg,
Project Lead France
SIP Communicator
emcho@sip-communicator.org PHONE: +33.1.77.62.43.30
http://sip-communicator.org FAX: +33.1.77.62.47.31

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@sip-communicator.dev.java.net
For additional commands, e-mail: dev-help@sip-communicator.dev.java.net