Password Stored in Plain Text

Bug #187958 reported by Brian Pitts on 2008-02-01
Affects Status Importance Assigned to Milestone
Last Exit
Fix Released
last-exit (Ubuntu)

Bug Description

Binary package hint: last-exit

Last-Exit store the user's password in plain text in the gconf key /apps/lastexit/password

Thomas McKay (tom-mckay1) wrote :

I can confirm this claim.

The ideal solution would be to provide a hook into the Key Ring to secure the password.

Confirmed and forwarded upstream.

Changed in last-exit:
status: New → Confirmed
Changed in last-exit:
status: Unknown → New
Changed in last-exit:
importance: Undecided → Medium
status: Confirmed → Triaged
Changed in last-exit:
status: New → Fix Released
Changed in last-exit:
importance: Unknown → Medium
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.