FlashFXP Forums - View Single Post

OngL · 08-05-2004, 06:21 AM

Sites.dat should be encrypted with strong algorhytm e.g. AES. A logon prompt can be implemented to 'unlock' sites.dat in memory for as long the ffxp is open. This feature can be made as optional.

The file contains username/password, and should not be as vulnerable as it is now... even if it get leaked out with AES encryption, it wouldn't be easy to break it.

08-05-2004, 06:21 AM
OngL Member Join Date: Aug 2004 Posts: 51	Security, Security, and Security Sites.dat should be encrypted with strong algorhytm e.g. AES. A logon prompt can be implemented to 'unlock' sites.dat in memory for as long the ffxp is open. This feature can be made as optional. The file contains username/password, and should not be as vulnerable as it is now... even if it get leaked out with AES encryption, it wouldn't be easy to break it.