 RSS2 Feed |
 |
 | Master Password - Password Encryption |  |
|
|
Hello, Am I right in thinking all saved passwords aren't encrypted? If so, is it not possible to something similar to other programs which let you set a master password, which is used to encrypt the passwords?
Thanks |
|||||||||||
|
|||||||||||||
Posted: Mon May 03, 2010 4:38 am
 |
| |
|
Veteran
|
|
They are encrypted.
If you take a look at the accounts file, you'll see the passwords are base64 encoded. Try decoding one, and you'll see its an encrypted string. |
|||||||||||
|
|||||||||||||
|
| |
|
|
Do you mean encoded or encrypted? Unless I'm wrong and they're the same thing. Or maybe you mean the encryption is encoded.
|
|||||||||||
|
|||||||||||||
|
| |
|
Veteran
|
|
The latter.. the encryption is encoded.
The accounts file is just a simple txt file. Binary data (encrpyted data) does not play nicely with a text file, hence the reason its base64 encoded. So.. they base64 decode the password first, and then decrypt it. |
|||||||||||
|
|||||||||||||
|
| |
|
|
Ok. So where is the key for the encryption? surely it must be kept in plain text if it's a string or freely available as a keyfile.
|
|||||||||||
|
|||||||||||||
|
 | Master Password - Password Encryption | |
|
||
|
|
|
Content © NuSphere Corp., PHP IDE team
Powered by phpBB © phpBB Group, Design by phpBBStyles.com | Styles Database.
Powered by
Powered by phpBB © phpBB Group, Design by phpBBStyles.com | Styles Database.
Powered by