[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug-wget] [bug #51666] Please hash the hostname in ~/.wget-hsts files
From: |
Ander Juaristi |
Subject: |
[Bug-wget] [bug #51666] Please hash the hostname in ~/.wget-hsts files |
Date: |
Fri, 18 Aug 2017 14:51:12 -0400 (EDT) |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 |
Follow-up Comment #2, bug #51666 (project wget):
I'm not generally against these kind of small tweaks that don't harm and
slightly improve user's privacy.
If Firefox doesn't do it, we don't care: it's their business and they will end
up doing it if users request that feature (maybe because they saw it in
wget).
Private SSH keys can be protected with a password if you want to.
> While we could hash anything, it would be way safer for you to protect your
complete home directory
We can do both, hash and still keep the readable to the user only. If the
overhead is not much I would go for it. That is the basis of every security
framework out there: if the benefits of having 2 security mechanisms instead
of only 1 outweigh the drawbacks, then implement 2 instead of 1.
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?51666>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/