Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Google Talk cleartext credentials in process memory

From: Jaroslaw Sajko <sloik () parareal net>
Date: Tue, 29 Nov 2005 19:49:03 +0100
Nasko Oskov wrote:


If you want to protect the credentials in memory from dumps that go to
Microsoft, why not use CryptProtectMemory() instead of home-grown
obfuscation? This function encrypts the memory with a key that changes
over reboots, so even if you send a dump to MS, they wouldn't know how
to decrypt it.


Yes, it is possible.

regards,
js
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: