Last.fm Password Stored in Plain Text
Bug #187958 reported by
Brian Pitts
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Last Exit |
Fix Released
|
Medium
|
|||
| last-exit (Ubuntu) |
Triaged
|
Medium
|
Unassigned | ||
Bug Description
Binary package hint: last-exit
Last-Exit store the user's last.fm password in plain text in the gconf key /apps/lastexit/
Revision history for this message
| Thomas McKay (tom-mckay1) wrote | #1 |
Revision history for this message
| Andrew Starr-Bochicchio (andrewsomething) wrote | #2 |
| Changed in last-exit: | |
| status: | New → Confirmed |
| Changed in last-exit: | |
| status: | Unknown → New |
| Changed in last-exit: | |
| importance: | Undecided → Medium |
| status: | Confirmed → Triaged |
| Changed in last-exit: | |
| status: | New → Fix Released |
| Changed in last-exit: | |
| importance: | Unknown → Medium |
To post a comment you must log in.
I can confirm this claim.
The ideal solution would be to provide a hook into the Key Ring to secure the password.