Posted by Stefan Rybacki on 01/05/07 15:51

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cord-Heinrich Pahlmann schrieb:
> Peter Fox schrieb:
>
>...
>
> Who doesn't know the problem. You want to create a thread in a forum or
> a blog and have forgotten your login-data. Thats where my script is
> supposed to help (me and some friends).

I know exactly what you mean (There are password tools out there like
keepass ;) )
>...
>
> Is that understandable. I can't to better with my english skills, sorry.
>
It's understandable, but let me tell you, that if you want to you could
decrypt all your friends password just by storing their A-password
whenever they login or by storing their B-passwords before you encrypt
them or after you decrypted them for displaying or sending. This is just
to mention, because you're trying so hard where in the end they have to
trust you anyways ;) (Just my two cents)
According to your other question about whether it's save to send those
passwords using POST to other websites. IMHO it's as save as it would be
from the original website.

Regards
Stefan

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (MingW32)

iD8DBQFFnnPvyeCLzp/JKjARArE9AJ9SzqpKivzV7UYMLWSNjpkjxNxeOACfebQZ
yYNBeA/pp3tA3Mcuer+YgGQ=
=WJGX
-----END PGP SIGNATURE-----

[Back to original message]