Hi Kevin,
Do you have an ETA for when this feature will be available?
Josh.
On 06/09/2013 11:15, "Kevin Wasserman" <[log in to unmask]> wrote:
>"2) Currently (on linux) the moonshot-ui saves the password clear-text on
>the harddrive (even if I chose not to save it). This is clearly
>unacceptable. What are the plans regarding securing the moonshot client?"
>
>We'll be using gnome keyring on linux for secure storage
>(forward-compatible to libsecret). I'm working on that code now.
>
>
>Kevin Wasserman
>
>Painless Security
>
>
>
>On Fri, Sep 6, 2013 at 3:26 AM, Kalle Happonen
><[log in to unmask]> wrote:
>
>Hi all,
>thanks to the fix posted by Sam 2 days ago, I now have ssh mapping
>working nicely.
>
>We could soon actually start pilot-production here, but I have a few
>remaining worries.
>
>1) Is there any documentation how to configure the client to only accept
>a specific server certificate? I see the options in the client config,
>but I don't know what actually goes in there, and if the certificate is
>actually checked?
>
>2) Currently (on linux) the moonshot-ui saves the password clear-text on
>the harddrive (even if I chose not to save it). This is clearly
>unacceptable. What are the plans regarding securing the moonshot client?
>
>Cheers,
>Kalle
>
>
>
>
>
Janet(UK) is a trading name of Jisc Collections and Janet Limited, a
not-for-profit company which is registered in England under No. 2881024
and whose Registered Office is at Lumen House, Library Avenue,
Harwell Oxford, Didcot, Oxfordshire. OX11 0SG. VAT No. 614944238
|