Jump to content

Reversible Passwords


SGNinja101

Recommended Posts

So we just installed TCAdmin V2 and found out that all passwords are reversible.

Then we contacted the support and talked with Luis and he told us that it is by design.

 

Personally I think that it is a major design/security flaw and wanted a broader opinion on it.

Link to comment
Share on other sites

basically, storing passwords using reversible encryption is nearly the same as storing plain text vers of the passwords.

 

The system will store the passwords with a reversible encryption...Basically, allowing you to decrypt it....

 

Typically, the purpose of this would be to provide apps that use protocols that might require the user's password for auth purposes.

 

 

 

I guess you will be relying on customers utilizing secure passwords? We all know thats a joke though :)

 

....

 

I agree with the OP....I'm sure Luis can elaborate though on his reasoning.

Edited by adamnp
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Who's Online   0 Members, 0 Anonymous, 42 Guests (See full list)

    • There are no registered users currently online
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. Terms of Use