http://bugzilla.moblin.org/show_bug.cgi?id=5019
pohly <patrick.ohly(a)intel.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |patrick.ohly(a)intel.com
Resolution| |WONTFIX
--- Comment #1 from pohly <patrick.ohly(a)intel.com> 2009-08-07 00:34:40 ---
(In reply to comment #0)
Image: distro 20090803-001
Description:
===================
This issue is for security thinking. On the Sync service config page, we should
not let others to know the char number of user's password. For example,
when I used 123456 as the password, it shows "......".
when I used 12345678, it shows "........".
It is pretty standard to obfuscate the password like that. For example,
seahorse (the GUI for GNOME's keyring) also shows the correct number of dots. I
don't think we should deviate from that.
If someone has access to the machine, he can get the password anyway, no matter
what we show.
--
Configure bugmail:
http://bugzilla.moblin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching someone on the CC list of the bug.