Re: [Gretl-devel] using libcurl
The use of passwords should be avoided.
I think that we will not need for passwords in Gretl, unless we are
acessing a secure database server (but then the protocol should deal
with that).
If the users needs to protect a datafile, then an external tool should
be used (for example a ZIP archiver with password).
Hélio
On Thu, Jun 14, 2012 at 3:36 PM, Henrique Andrade
<henrique.coelho(a)gmail.com> wrote:
Dear Allin and Guilherme,
Now I'm a little bit afraid. I'm using this here at my work and we
have a lot of confidential stuff. It is a bank :-)
So if you believe there are risks I think I should not use this feature.
Additionally, still talking about security questions... In R we have
an option to ask for the password every time the user initialize the
software. Is this a possible and desirable feature?
Best,
Henrique
Enviado via iPhone
Em 14/06/2012, às 11:26, Allin Cottrell <cottrell(a)wfu.edu> escreveu:
> On Thu, 14 Jun 2012, Hï¿œlio Guilherme wrote:
>
>> That is a very unsecure authentication!
>>
>> Most of those Proxies all hacked, because of clear text auth.
>
> Libcurl should take care of negotiation with the server, and will presumably not send
the password in clear text if that can be avoided (e.g. use NTLM).
>
>> Should'nt it be https:// ?
>
> It can be https://, in fact it can be just about any protocol.
>
> Allin
> _______________________________________________
> Gretl-devel mailing list
> Gretl-devel(a)lists.wfu.edu
> http://lists.wfu.edu/mailman/listinfo/gretl-devel
_______________________________________________
Gretl-devel mailing list
Gretl-devel(a)lists.wfu.edu
http://lists.wfu.edu/mailman/listinfo/gretl-devel