On Thu, Nov 04, 2004 at 09:39:41PM +0100, Wido Depping wrote:
> Fixed it a few moment ago. Stupid error by myself *grr*
> New version at: http://home.tu-clausthal.de/~ifwd/luma/luma-1.5_pre19.tar.bz2
Great, I'll try it in a moment.
> > - if I happen to have selected, say, digest-md5 before and then changed to
> > gssapi, the username and password user previously are not cleared from
> > the serverlist file.
>
> I thought it would be cool not to enter everything again if you have
> to test different methods. But if you think this is a security issue,
> I can delete the user/password information.
I was thinking about the scenario where someone was using a method which
required
a password and then changed to gssapi. The password would stay there forever and
this may not be expected. However, I can see that the username/password fields
are
not cleared after one changes to gssapi, so this may give a hint that they are
still stored somewhere.
So, well, I would prefer the password to be removed from the file if it's not
used
anymore, but that's just me :)
Maybe having the ability to go back from gssapi, clear the username and
password fields
and then switch to gssapi again is enough.
-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
|
