if you checked 'use proxy' option and typed your server, port, name and passwd,
You should check your 'cintanotes.setting' file.
there's proxy setting is stored like this
system.proxy = SERVER;PORT;USERNAME;PASSWORD;E
(that last character 'E' would mean 'E'nabled use proxy option)
you should know that PASSWORD is not encrypted.
warn! your proxy password is naked
-
assalqou
- Posts: 7
- Joined: Thu Jan 24, 2013 5:29 pm
- Contact:
-
CintaNotes Developer
- Site Admin
- Posts: 5011
- Joined: Fri Dec 12, 2008 4:45 pm
- Contact:
Re: warn! your proxy password is naked
Thanks for the warning!
Well since storing password hash in this case won't work (the program needs the password to connect, not just to check if it's correct),
a determined person will be able to crack the code anyway.
But I agree it is bad to store it in clear text.
In the next version we'll scramble it so that at least it will be required to disassemble CintaNotes to get the key used for encryption.
Well since storing password hash in this case won't work (the program needs the password to connect, not just to check if it's correct),
a determined person will be able to crack the code anyway.
But I agree it is bad to store it in clear text.
In the next version we'll scramble it so that at least it will be required to disassemble CintaNotes to get the key used for encryption.
Alex
Return to “CintaNotes Personal Notes Manager”