Do you think this is a security risk and if not is it a bad UI decision?

T.C. Hollingsworth tchollingsworth at gmail.com
Sat May 4 18:06:56 UTC 2013


On Fri, May 3, 2013 at 10:45 PM, Chris Adams <cmadams at hiwaay.net> wrote:
> The vast majority of other software that accepts
> passwords for any reason hides the passwords as they are typed, so the
> general expectation is that passwords are not displayed on the screen.

More to the point, the vast majority of the other software *in Fedora*
that accepts passwords for any reason hides the passwords as they are
typed.  If this is really broken (and who knows; neither side has
really produced much in the way of science), it needs to be fixed in
GTK (and Qt, and `passwd`, and a bunch of other places), not papered
over in anaconda.

I think it's reasonable to expect the Fedora installer to handle
passwords in a manner consistent with the rest of the operating
system.

-T.C.


More information about the devel mailing list