On 03/12/2007, Matt Wozniski <[EMAIL PROTECTED]> wrote: > > > 3. This entire discussion seems to basically be a moot point since > any cracker worth his salt would just be sniffing the network... > FTP transmits passwords in plaintext; security in how netrw > handles the passwords seems to be a rather moot point to me. >
netrw doesn't only handle FTP transfers. Better types of traffic are supported. I just don't like the idea that my password is sitting in a global vim variable for all to see. If I walk away from my keyboard, someone could walk by and type :echo netrw_passwd Plus, if/when I dump core, my password is there, in cleartext, in the dumpfile. Again, something I don't want to leave to filesystem perms to protect me from. Especially if I happen to be using an OS that FTPs dumpfiles back to the mothership for you. Erik -- Registered Linux User #445632 http://counter.li.org --~--~---------~--~----~------------~-------~--~----~ You received this message from the "vim_dev" maillist. For more information, visit http://www.vim.org/maillist.php -~----------~----~----~----~------~----~------~--~---
