undefined | Better HN

0 pointsComputerGuru14y ago0 comments

RAM which, for some goddamned reason on OS X, apparently contains an unencrypted copy of my login password?

Really? Most software does that, most crypto software and encryption algorithms are vulnerable to RAM attacks. It's not as easy to protect against that as you think it is.

0 comments

strictfp14y ago

Most software is vulnerable, but only for a very limited time span. If the password is persistent in RAM during an entire session, it's still a WTF.

j / k navigate · click thread line to collapse

0 pointsComputerGuru14y ago0 comments

RAM which, for some goddamned reason on OS X, apparently contains an unencrypted copy of my login password?

Really? Most software does that, most crypto software and encryption algorithms are vulnerable to RAM attacks. It's not as easy to protect against that as you think it is.

0 comments

strictfp14y ago

Most software is vulnerable, but only for a very limited time span. If the password is persistent in RAM during an entire session, it's still a WTF.

j / k navigate · click thread line to collapse