[Full-disclosure] Security issue in Filezilla3.0.9.2:passwordsare stored in plain text (sitemanager.xml)
Garrett M. Groff
groffg at gmgdesign.com
Tue Apr 22 04:10:30 BST 2008
Joey, Wikipedia has some decent write-ups on both compression and
encryption. Understanding those concepts would be helpful before tackling
RFCs. Hope that helps.
- G
On Mon, 21 Apr 2008 22:31:53 EDT, Joey Mengele said:
> So are you trying to suggest compression is not as secure as
> encryption? Have you even *read* the RFC in question?
The design goal of most compression algorithms is that *anybody* can take
the compressed data and get back the original. The design goal of most
encryption is that *only the intended recipient* can decrypt and get the
original data back.
The only question left at this point is whether the contents of your brain
were
compressed, or merely encrypted, and which of the two would be more secure.
Full-Disclosure is hosted and sponsored by Secunia.