On maandag 18 december 2017 21:08:46 CET Felix Geyer wrote: > Well, that's the unfortunate state of security on the Linux desktop (and > other major desktop OSes). Largely there is no privilege separation between > applications. > They all run in the same context so they can't really keep secrets from each > other.
That is true. Even though the file is protected by the security of ~/.config, I see no reason why the file itself isn't 600 or 660. But the real problem is that the password is stored in plaintext and I find that inexcusable.
signature.asc
Description: This is a digitally signed message part.
