And how to prevent malicious person from decrypting it in the same way?
On Thu, 09 Aug 2012 23:36:21 +0400, Thompson, Michael <[email protected]> wrote: > Create a tool to encrypt the openhpi.conf file and have OpenHPI decrypt > it. > > -----Original Message----- > From: Anton Pak [mailto:[email protected]] > Sent: Thursday, August 09, 2012 2:36 PM > To: [email protected]; [email protected] > Subject: Re: [Openhpi-devel] OpenHPI security > > I don't recall any security related discussion in OpenHPI. > > Any suggestion how we can make it more secure? > > Anton Pak > > On Thu, 09 Aug 2012 22:33:58 +0400, [email protected] <[email protected]> > wrote: > >> openhpi.conf file is in text format and the login credentials are >> placed in that file. The login credentials sent through secure >> channels but the file itself is in text form. Was this ever discussed >> as a security problem in the project? Did we explore any solutions? >> >> Mohan >> >> >> >> >> >> >> ---------------------------------------------------------------------- >> -------- >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. >> Discussions will include endpoint security, mobile security and the >> latest in malware threats. >> http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> Openhpi-devel mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/openhpi-devel > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and threat > landscape has changed and how IT managers can respond. Discussions will > include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Openhpi-devel mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openhpi-devel > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Openhpi-devel mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openhpi-devel ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Openhpi-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openhpi-devel
