Community discussions

MikroTik App
  4. RouterOS
  5. General

Saved password in winbox.cfg

Post Reply
 
User avatar
jager
Trainer
Trainer
Topic Author
Posts: 295
Joined: Mon Oct 31, 2005 2:44 am
Location: Germany
Contact:
Contact jager

Saved password in winbox.cfg

Fri Nov 11, 2005 6:53 pm

I know that saving passwords on local machine is not the wisest thing arround, but keeping them in winbox.cfg in PLAIN TEXT also sounds pretty stupid :)
Will it be crypted in future releases? Just for security reasons....
Top
 
User avatar
lastguru
Member
Member
Posts: 432
Joined: Fri May 28, 2004 9:04 pm
Location: Certified Trainer/Consultant in Riga, Latvia
Contact:
Contact lastguru

Mon Nov 14, 2005 1:42 pm

How would you imagine that? If they are encrypted and decrypted by the same software, there is no point of that, and also note that the passwod is to be used for authentication, and this task requires a plain-text password to be available on the local machine
Top
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26954
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:
Contact normis

Mon Nov 14, 2005 2:51 pm

you can turn off `save password` - that is most secure
Top
 
User avatar
jager
Trainer
Trainer
Topic Author
Posts: 295
Joined: Mon Oct 31, 2005 2:44 am
Location: Germany
Contact:
Contact jager

Mon Nov 14, 2005 6:15 pm

Ofcourse, the safest way is not to save the password at all... But, the password could be MD5 crypted ... For example, windows dialup password is not stored in plain text :)
But, nevermind ... nobody has access to my laptop :)
Top
 
cmit
Forum Guru
Forum Guru
Posts: 1547
Joined: Fri May 28, 2004 12:49 pm
Location: Germany

Mon Nov 14, 2005 6:28 pm

MD5 encryption wouldn't help, as this is a one-way hash. So there's no way to get the password back out of the hash. You could only check, if the password you entered is correct - but you should leave that decision up to the RouterOS machine :)
Top
Post Reply
  4. RouterOS
  5. General