Subj : Re: Is binkp/d's security model kaputt?
To   : Oli
From : Satchmo
Date : Wed Sep 08 2021 08:36 am

On 09/02/21, Oli said the following...
 
 Ol> I'm trying to figure out how to configure binkd for reliable security. I
 Ol> see sev eral problems. Part design flaw of the binkp protocol (and FTN
 Ol> tradition), part implementation.
 Ol> 
 Ol> 1) Passwords stored in clear text
 Ol> It's not ideal, but I can live with that. At least it allows MD5-CRAM,
 Ol> which is not very secure, but better than clear plaintext over the wire.

 [snip]
 
Hey Oli, I was wondering if any of these bugs/issues have been raised with
the developers? It's open source right?   

--- Mystic BBS v1.12 A39 2018/04/21 (Linux/64)
 * Origin: sonicbbs.co.uk :: Yorkshire, UK (21:4/144)

.