Page 2 of 2

Re: md5

Posted: Fri Dec 03, 2004 6:19 pm
by malun
user wrote:the main issue is a non admin ( or other ) user accessing the pass.dat file locally, and then decoding the password. Often users ( admins ) use the same user/pass for everything, so by getting this via the pass.dat, it could lead to other compromise that may use the same use/pass combo.
I agree!

In the solution in Yawcam the webcam owner will still have to type in the password for every user. There is no way a user himself can select a password in a secure way. This issue is also something that speaks against that the user should re-use an old password. Never use the same password that you already use some other place! (Especially not in Yawcam :wink: )

/malun

Posted: Fri Dec 03, 2004 8:27 pm
by malun
Ok, now the forum is upgraded! Thanks!

/malun