Ticket #38928

Password Exposed

Open Date: 2019-02-05 00:12 Last Update: 2019-02-09 02:55

Reporter:
(Anonymous)
Owner:
(None)
Type:
Status:
Open
Component:
MileStone:
(None)
Priority:
9 - Highest
Severity:
9 - Highest
Resolution:
None
Vote
Score: 0
No votes
0.0% (0/0)
0.0% (0/0)

Details

Hello,

Once you have a TTL file set up and run it , it open teraterm , and places the connection details in command manager including the users password , need that to be suppressed

Attachment File List

No attachments

Ticket History (3/3 Histories)

2019-02-05 00:12 Updated by: None
  • New Ticket "Password Exposed " created
2019-02-05 12:17 Updated by: maya
Comment

That means ttermpro.exe must overwrite ARGV to hide the command line parameters? Do you tell the same suggestion to all applications in the world that accepts a password by command line parameter?

If someone can read command line parameters from running process, he already has some privirage in that PC. Doesn't he can read the password from ttl file?

2019-02-09 02:55 Updated by: None
Comment

any user can run task manager and see the password

Edit

You are not logged in. I you are not logged in, your comment will be treated as an anonymous post. » Login