[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hiding all copies of your PPP password



Hi,

On Tue, 8 Dec 1998, Peter L. Peres wrote:

> On Tue, 8 Dec 1998, Shachar Tal wrote:
> 
> > You can also XOR your ISP password and your login password, put that in a
> > file somewhere, and patch /bin/login to XOR it again at login time, and
> 
> Shachar, imho, this is a VERY BAD idea. 1/2 of the key (the login) is in
> the public domain (hint: email address user name !). No, let's not do
> this. 

I was speaking about using the user's password, not the user name, as the
key. But even so, you can use block ciphers.

Shachar Tal
-------------
Taub Computer Center, Technion, Israel Institute of Technology
finger me for contact info or PGP key.