unit13 0 Posted ... Eddie client saves login and password information in AirVPN.xml as cleartext! I am suggesting this information be hashed when saved, if possible. <?xml version="1.0" encoding="utf-8"?><eddie> <options> <option name="login" value="your-saved-email-address@sample-email-address.com" /> <option name="password" value="your-AirVPN-password-in-cleartext" /> <option name="remember" value="True" />... Quote Share this post Link to post
go558a83nk 362 Posted ... Maybe I'm not thinking of every possible situation but if a malicious somebody has access to that xml file then it's already over for you - they've gained access to your machine. My VPN username and password would be way down the list of worries. Quote Share this post Link to post
OpenSourcerer 1435 Posted ... Hi! Referencing Windows version.I just noticed: Why is the AirVPN password in the AirVPN.xml saved in plain text. Is there a chance to save it hashed, at least? Regards, giga Hello! No, that's not planned at the moment. To save it encrypted in a safe way you should enter a master password (like you do with browsers) that is not stored anywhere, so it would be totally identical to as it is now when you don't keep "Remember" ticked. Different methods can be invented and made secure regardless of client program source code exposure but what would the point be...? Kind regardsAirVPN Support Team Quote Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post
Not connected, Your IP: 18.217.98.175
Online: 25888 users - 321690 Mbit/s total BW