Hacker News new | ask | show | jobs
by UncleMeat 1525 days ago
But there is no evidence that they are writing the passwords to disk.
2 comments
lxgr 1525 days ago
They are writing the passwords to users' disks at least, which by itself is already really bad and easily avoidable.
link
UncleMeat 1524 days ago
How is that bad?

If you've got malware on your machine then you are already fucked. Desktops don't tend to have strong process isolation that keeps malware from reading a password in flight anyway.

link
djtriptych 1524 days ago
I'm talking about authenticating servers in general, not just lenovo.
link