On Tue, 3 Apr 2001, Peter Foreman wrote:

> Like with all coredumps, this is normal. I don't see why there's such
> a fuss about this. Of course it contains your password, even if you
> uncheck the "save password" box: it needs to have your password in
> memory somewhere to connect to ICQ, right?

yeah, its lame.

but, good applications zero out the memory of sensitive data once they're
done with it. this includes crypto keys, PRNG seeds (if possible), nad of
course passwords. the lesson in this should still be learned.

but yeah, *shrug* who freakin cares about ICQ passwords. if you're lame
enough to recycle sensitive passwords for ICQ, you have far larger
problems.

____________________________
jose nazario josecwru.edu
                           PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
                                       PGP key ID 0xFD37F4E5 (pgp.mit.edu)

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]