Re: Filezilla a security risk

To: debian-user@lists.debian.org
Subject: Re: Filezilla a security risk
From: Linux-Fan <Ma_Sys.ma@web.de>
Date: Fri, 29 Jun 2012 15:20:18 +0200
Message-id: <[🔎] 4FEDAB92.8080406@web.de>
Reply-to: Ma_Sys.ma@web.de
In-reply-to: <[🔎] CA+AKB6E1FfRCNbV6PimAvdvUfoBKuo7rgLsbaCR_7tgtuZdw5A@mail.gmail.com>
References: <[🔎] CA+AKB6E1FfRCNbV6PimAvdvUfoBKuo7rgLsbaCR_7tgtuZdw5A@mail.gmail.com>

On 06/27/2012 09:26 PM, francis picabia wrote:
> I've just learned Filezilla is a security risk.  It stores saved
> passwords and the last used password in a plain text file.
> 
> Malware commonly scoops up this info and hacks web sites
> or shell accounts.
> 
> The developer refuses to incorporate a solution
> such as master password and encryption into filezilla.
> 
> His responses in numerous bug reports and feature requests are:
> 
> 1. encryption: that's the file system's job
> 2. don't get the malware in the first place
> 
> In my opinion, people should avoid filezilla.

Thank you for your warning. I immediately switched to gftp because
storing passwords unencrypted violates my security standards.

Reply to:

References:
- Filezilla a security risk
  - From: francis picabia <fpicabia@gmail.com>

Prev by Date: Re: buffer bloat or Squid issue ?
Next by Date: Re: Filezilla a security risk
Previous by thread: Re: Filezilla a security risk
Next by thread: Hash Sum mismatch......
Index(es):
- Date
- Thread