*** This forum was active till April, 2021. Now it is read-only, please use the New forum! ***

+  AChat Forum
|-+  Support
| |-+  Slip of the pen (Report bugs) (Moderators: Lover, Brandybee, jayc, Nat33)
| | |-+  Vulnerability in login "cookie"		 « previous next »
: [1]
: Vulnerability in login "cookie"  ( 3350 )
stray
Sr. Member
****
: 494


Girl, 20 yrs old, bisex
« : May 06, 2013, 01:56:06 PM »
Hello, I've just noticed that in

C:\Users\<username>\AppData\Local\AChat\personal\login.bin

are stored login details in clear, without any type of cryptography.

This could be how some cracker steal user accounts, he need just a little software that send the content of that file.
Could be possible to crypt it?

Thank you.

I go from bed to bed looking for bones, as every stray does ::)
Brandybee
Moderator
Hero Member
*****
: 6966


Sweet As Honey With A Cheeky Sting. BUZZ !!
« #1 : May 06, 2013, 02:38:31 PM »
i am always happy if new ideas increase security for our members.

well done Stray for spotting a way to ensure our members keep safe.

Keep them coming.  I hope Achat Gods take note of this.   ;D

                         :)   :D   :P    THERE'S  A  LITTLE  BIT  OF  DEVIL  IN  MY  ANGEL  EYES       :)    :D    :P
stray
Sr. Member
****
: 494


Girl, 20 yrs old, bisex
« #2 : May 06, 2013, 02:43:31 PM »
Np ^^

I go from bed to bed looking for bones, as every stray does ::)
: [1]  
« previous next »
: