Re: Hushmail: questionable file
From: Regis (nobody_at_thisaddress.com)
Date: Sun, 21 Aug 2005 21:48:06 -0400
On 21 Aug 2005 18:17:45 -0700, "dotnet123" <email@example.com>
> Any way to find out what could be in the file, i.e. decrypt it?
If you don't know how it was encrypted, it's next to impossible to try
and decrypt it.
> I'm wondering if anyone else thinks that an application automatically
> storing a passphrase in a file on your local drive is a bad idea, even
> it is encrypted...
You're assuming that your password is stored in the file.
That's a rather large assumption...and most likely incorrect anyway,
because there would be no purpose in storing your password in a
file...since you have to type it in when you log into the system.
Find out from Hush what they say regarding the purpose of that file.
I have more faith in them than to think they'd be so careless as to
store your password in a file on the hard drive. That would be
something you'd expect from some half-assed operation run by a kid out
of a basement....but not Hushmail.