kngako
/
secure-development-handbook
forked from cwtch.im/secure-development-handbook
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Update link

This commit is contained in:
Sarah Jamie Lewis 2021-06-25 08:42:24 -07:00
parent f64fc53be0
commit 1fe97ca482
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/profile_encryption_and_storage.md
View File

@ -8,7 +8,7 @@ it isn't possible to provide a full list of profiles a user might have access to
## Unencrypted Profiles and the Default Password
To handle profiles that are "unencrypted" (i.e don't require a password to open) we currently create a profile
with a [default, hardcoded password](https://git.openprivacy.ca/cwtch.im/ui/src/branch/master/go/the/globals.go#L12).
with a [defacto, hardcoded password](https://git.openprivacy.ca/cwtch.im/libcwtch-go/src/branch/trunk/constants/globals.go#L5).
This isn't ideal, we would much rather wish to rely on OS-provided key material such that the profile is bound to a
specific device, but such features are currently patchwork - we also note by creating an unencrypted profile, people