On 8/29/06, DarkFoon <[EMAIL PROTECTED]> wrote:
I was looking through my XML configuration recently, and I noticed that my Dynamic DNS password is not encrypted like the PFsense password is. It seems to me that this is a rather important password and should be encrypted (if possible).
This is also true of other programs, such as gaim. Your IM passwords are stored in plaintext, for the same reasons. The best way to deal with this is to make your home directory encrypted, but that rules out unattended mounting almost by definition. Take a look at truecrypt for one cross-platform open-source tool that supports steganography as well. Another way to deal with it would be to use something like a keychain program (similar to ssh-agent) to give the daemon the key, or to get it from another machine (if you wish to have unattended boots with /home mounted). Of course if you're worried about power outages, you will want to UPS that other machine, and/or have a generator with automatic switchover from the grid. One advantage of natural gas generators is not having to be there to refill it with fuel. -- "If you're not part of the solution, you're part of the precipitate." Unix "guru" for rent or hire -><- http://www.lightconsulting.com/~travis/ GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
