> Hi, > > I come to report a little strange discolsure discovered by my > co-worker Fx0day. > > When you save session informations under putty and you need proxy > for a session, > We can find in plain clear text the login and password proxy auth in > the windows > database register. > > Strange to see a good ssh client storing plain clear text < hot > > informations !!
Unfortunately, there's no way to encrypt it securely, because there's nowhere safe to store an encryption key. Cheers, Simon -- Simon Tatham "A cynic is a person who smells flowers and <[EMAIL PROTECTED]> immediately looks around for a coffin." _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
