[mICQ] [patch] ICQ md5 login support
Peter Stuge
stuge-micq at cdy.org
Fri Apr 13 20:39:14 CEST 2007
On Fri, Apr 13, 2007 at 07:46:59PM +0200, Robert Bartel wrote:
> I recently read in this list that md5 login is not supported in
> micq and the password is sent (almost) cleartext over the net. So
> everybody intercepting the login traffic can reveal the password!
MD5 is considered cracked, so not much different from clear text.
> a patch for the current cvs version of micq. It replaces the old
> login method and uses openssl for md5.
If micq already depends on OpenSSL then fine, otherwise please don't
add the dependency now. Grab the code from LibTomCrypt instead.
http://libtom.org/
//Peter
More information about the mICQ-List
mailing list