Hello all, Sunday, July 24, 2005, Dick Hoogendoorn wrote: >> Thursday, July 21, 2005, 5:11:00 PM, Marek Mikus wrote: >>> Hello, >>> as I discovered, this file is not encrypted when OTFE is active.
>>> https://www.ritlabs.com/bt/view.php?id=4952 >> I don't know about you but I prefer tbuser.def to remain unencrypted. > I agree totally with you!! What could be the reason to encrypt this > file while there is no confidential data in it? if will user use encryption, he has reason to do this. Attacker can stole data, discard or change them. Who You are, You are define, what is and what is not confidental? There are many configuration data, which are not confidental, but are encrypted. As I told, I like manual editing of this file, but it is not possible to encrypt all configuration data *except* tbuser.def file, for many users, this will be security hole. -- Bye Marek Mikus Czech support of The Bat! http://www.thebat.cz Using the best The Bat! 3.51.9 under Windows XP 5.1 Build 2600 Service Pack 1 Notebook Acer, Pentium4-M 2.2 GHz, 512 MB RAM, ADSL line ________________________________________________________ Current beta is 3.51.9 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html IMPORTANT: To register as a Beta tester, use this link first - http://www.ritlabs.com/en/partners/testers/
