Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 3775] New: etherXXXX* file

Wireshark-bugs: [Wireshark-bugs] [Bug 3775] New: etherXXXX* file

Date: Sun, 26 Jul 2009 09:10:16 -0700 (PDT)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3775

           Summary: etherXXXX*  file
           Product: Wireshark
           Version: 1.0.8
          Platform: Other
        OS/Version: Windows 2000
            Status: NEW
          Severity: Major
          Priority: High
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: gedropi@xxxxxxxxx


Build Information:
Version 1.0.8 (SVN Rev 28431)
--
Upon starting a capture, an etherXXXX* file is created in the Temp directory. 
In hex this file contains the Windows login and password AND the ISP login and
password , machine name - among other things.  This information should NEVER be
captured anywhere.  That is the stuff of criminals.  The ISP login, for
instance,  should go only to the ISP.  What are you doing with our private
information?  Please do not tell me developers that develop sw that captures
such private information would then do nothing with it.  I realize also that
your app is calling home as well.  I am having serious trust issues.

Please have some respect for us average joes.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Follow-Ups:
- [Wireshark-bugs] [Bug 3775] etherXXXX* file
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 3709] NTLMSSP support is incomplete in wireshark
Next by Date: [Wireshark-bugs] [Bug 3764] GTK2 based packet list - patches
Previous by thread: [Wireshark-bugs] [Bug 3774] Beef up CCSDS length check to account for presence of 802.3 FCS
Next by thread: [Wireshark-bugs] [Bug 3775] etherXXXX* file
Index(es):
- Date
- Thread