[Full-disclosure] Security issue in Filezilla 3.0.9.2:passwordsare stored in plain text (sitemanager.xml)
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Tue Apr 22 03:53:55 BST 2008
On Mon, 21 Apr 2008 22:31:53 EDT, Joey Mengele said:
> So are you trying to suggest compression is not as secure as
> encryption? Have you even *read* the RFC in question?
The design goal of most compression algorithms is that *anybody* can take
the compressed data and get back the original. The design goal of most
encryption is that *only the intended recipient* can decrypt and get the
original data back.
The only question left at this point is whether the contents of your brain were
compressed, or merely encrypted, and which of the two would be more secure.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080421/9f24f650/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.