Secure storage
in [Java Programming]
|
From: markspace on 25 Feb 2010 21:50 Rhino wrote: > I'm wondering if anyone here can recommend a secure way to store a list of > user names and passwords on a Windows XP computer? The first thing I'd look into is creating a separate account for the password list or database, and then be sure that account is adequately password protected and secure. I don't know details about Windows, I'm more familiar with the in-and-outs of *nix. I'd get a good reference on Windows security and bone up if I had to do this, not trust random Usenet opinions. > > I'm looking for an application that will store the data in a way that isn't > readily decipherable by a hacker who gets on to the system or even a snoopy > visitor to my house who happens to use the computer. Physical security is the first step. However, if this is just casual snooping then the seperate account mentioned above with a separate, secure password will keep out most folks. > > I'm just trying to find a good way to store my various usernames and > passwords for the gazillions of accounts that I have in one place or > another.... All that said, the usual method is to store the MD5 sum or some other hash, not the password itself. Then even if a hacker gets your password file it's of limited value. Design the app so that password is sent over a secure, private transport like SSL. When your app gets the password, take the MD5 sum and check it against the database. Do not transmit the MD5 sum to the app and then just check it, you won't be sure that way. A hacker could just intercept the MD5 sum and then use that himself, it's as good as having the password itself at that point. > > I used to have a nifty little app on my PDA called Memorizer (?) which used > a non-conventional access method - you had to click on the correct surfaces > in a complex shape to get in; once you were in, you simply have a nice text > file that lets you write whatever you want, including usernames and > passwords. That was handy because if I ever lost my PDA, I knew that no one > would be able to look at my secret stuff. I'm looking for something similar > on the PC. No ideas on an app that'll do this, but there are plenty of encryption methods that are available. Even Zip with a password would keep out most folks. I'll leave the gesture system up to you.
From: Arne Vajhøj on 25 Feb 2010 22:00 On 25-02-2010 21:18, Rhino wrote: > I'm wondering if anyone here can recommend a secure way to store a list of > user names and passwords on a Windows XP computer? > > I'm looking for an application that will store the data in a way that isn't > readily decipherable by a hacker who gets on to the system or even a snoopy > visitor to my house who happens to use the computer. > > I'm just trying to find a good way to store my various usernames and > passwords for the gazillions of accounts that I have in one place or > another.... > > I used to have a nifty little app on my PDA called Memorizer (?) which used > a non-conventional access method - you had to click on the correct surfaces > in a complex shape to get in; once you were in, you simply have a nice text > file that lets you write whatever you want, including usernames and > passwords. That was handy because if I ever lost my PDA, I knew that no one > would be able to look at my secret stuff. I'm looking for something similar > on the PC. It should be relative trivial to write a little Swing app that stores the passwords in a file using 256 bit AES and can display the passwords when a passphrase is entered. Arne
From: Nigel Wade on 26 Feb 2010 04:50 On Thu, 25 Feb 2010 21:18:38 -0500, Rhino wrote: > I'm wondering if anyone here can recommend a secure way to store a list > of user names and passwords on a Windows XP computer? > > I'm looking for an application that will store the data in a way that > isn't readily decipherable by a hacker who gets on to the system or even > a snoopy visitor to my house who happens to use the computer. > > I'm just trying to find a good way to store my various usernames and > passwords for the gazillions of accounts that I have in one place or > another.... > > I used to have a nifty little app on my PDA called Memorizer (?) which > used a non-conventional access method - you had to click on the correct > surfaces in a complex shape to get in; once you were in, you simply have > a nice text file that lets you write whatever you want, including > usernames and passwords. That was handy because if I ever lost my PDA, I > knew that no one would be able to look at my secret stuff. I'm looking > for something similar on the PC. > > Any ideas? I use eWallet for logon details, and other personal info. It's built on 256bit AES encryption. Not the most secure, but secure enough to defeat most attacks. It has the advantage that it comes in both desktop and mobile varieties, so you can sync between your desktop and PDA/phone (although the iPhone sync is severely nobbled by stupid Apple restrictions). -- Nigel Wade
From: RedGrittyBrick on 26 Feb 2010 05:43 On 26/02/2010 02:18, Rhino wrote: > I'm wondering if anyone here can recommend a secure way to store a list of > user names and passwords on a Windows XP computer? > > I'm looking for an application that will store the data in a way that isn't > readily decipherable by a hacker who gets on to the system or even a snoopy > visitor to my house who happens to use the computer. > > I'm just trying to find a good way to store my various usernames and > passwords for the gazillions of accounts that I have in one place or > another.... > > I used to have a nifty little app on my PDA called Memorizer (?) which used > a non-conventional access method - you had to click on the correct surfaces > in a complex shape to get in; once you were in, you simply have a nice text > file that lets you write whatever you want, including usernames and > passwords. That was handy because if I ever lost my PDA, I knew that no one > would be able to look at my secret stuff. I'm looking for something similar > on the PC. > > Any ideas? http://passwordsafe.sourceforge.net/ -- RGB
From: Jean-Baptiste Nizet on 26 Feb 2010 11:03 Rhino a écrit : > I'm wondering if anyone here can recommend a secure way to store a list of > user names and passwords on a Windows XP computer? > > I'm looking for an application that will store the data in a way that isn't > readily decipherable by a hacker who gets on to the system or even a snoopy > visitor to my house who happens to use the computer. > > I'm just trying to find a good way to store my various usernames and > passwords for the gazillions of accounts that I have in one place or > another.... > This might look like an ad, but I have just developed an online web app these last weeks to store accounts/passwords securely. It's free, as in beer and as in speech, and it won't annoy you with any ad. I developed it as a hobby, to discover some technologies and frameworks I didn't know yet. Try it at https://memwords.appspot.com/Index.action if you like. Note that, since it's deployed on Google App Engine and I am the only user of the app at this time, it's a little slow to start. The explanations about the way information is secured is available at http://code.google.com/p/memwords/wiki/Security Hope it helps. JB.
|
Next
|
Last
Pages: 1 2 3 4 5 Prev: Creating Heap dump , jmap or any other way ? Next: %%% Funny College Girls Nude Video HERE %%% |