Do you know that there is different levels of security. I do know that these levels are unmeasurable`and subjective but if you really want to be safe I would probably not use computer and I would be living in small aluminium foil box in same place where air frances black box is.
If they were encrypted I would give device to SOME people.
Again, back to the "and do you think anybody knowing where that file is wouldn't know how to 'decrypt' it?"
Actually did you know that firefoxs password safe gui was "plain text" for awhile but they changed it so that you have press button before it shows passwords behind usernames. Is this completely stupid thing to do?
They did it because of people glancing at them on the monitor, and also because then it can prompt for your master password. Nothing else.
guys the only way to fix this if unlocking the a locked phone (device lock of the settings) would use that lock code as a password to get the private key where everything can be decrypted with.
So how many that are now complaining do have enabled the device lock?
well most off us until today have been duped already by option A. thinking they was safe
I'm sure if many people knew was told option B before they hit submit to purchase they would not of got the device at all
I believe the point is that if seeing the file you know it's an unsecure yet sensitive file if it's plaintext and will therefore treat it right. Were it obscured the regular user wouldn't realize the file had to be treated with care since he or she wouldn't know it wasn't secure and wouldn't know what it contained.
Now the reverse would also be true, a criminal might not know what it contained right away if it were obscured, but it's a safe bet he would steal the obscured files anyway and go play.
This doesn't mean there's no point having any kind of security system but the very best though. Awareness of how secure you truly are is what's important, what/who you are protected against. Obscurity/weak security really doesn't help this in most cases.
Well, to put things into perspective I believe that not having them there in plaintext would only serve as making it slightly more difficult to do this as the software still has to decrypt and send the passwords when logging in and it would not be a major problem to snatch them if you have physical access to the system said software is running on.
I was always taught that security is implemented in multiple layers like an onion... Lots of little things add up to a more secure system. I guess some people know much better and that security is either on or off
My password was showing but I added the MSN account again, after the 1.1 upgrade, and the password isn't there. My n900 locks after 5 mins anyway.
On my Linux PC there are services with plain text passwords in /etc. I just never leave my user logged in when I'm not there, same goes for the phone, but its not really a phone and I guess some people just don't get that.
