[Mutt] #2987: Terminal bell when you hit backspace in an empty password field

To: cornmander@xxxxxxxxxxxxxx
Subject: [Mutt] #2987: Terminal bell when you hit backspace in an empty password field
From: Mutt <fleas@xxxxxxxx>
Date: Sun, 11 Nov 2007 10:33:17 -0000
Cc: mutt-dev@xxxxxxxx
List-post: <mailto:mutt-dev@mutt.org>
List-unsubscribe: send mail to majordomo@mutt.org, body only "unsubscribe mutt-dev"
Mail-followup-to: fleas@xxxxxxxx
Reply-to: fleas@xxxxxxxx
Sender: owner-mutt-dev@xxxxxxxx

#2987: Terminal bell when you hit backspace in an empty password field

 When you hit backspace in an empty password field (tested when logging in
 to an imap folder), it sounds the terminal bell. This is a handy feature
 for knowing when you've completely erased the wrong password, but it's
 also a security issue, albeit very minor. An attacker could theoretically
 learn the number of characters in a password by remembering how many times
 a person hits backspace before the terminal bell sounds, however unlikely
 this may be. Other programs, like ssh and mysql (with the -p flag) don't
 have this functionality.

-- 
Ticket URL: <http://dev.mutt.org/trac/ticket/2987>

Follow-Ups:
- Re: [Mutt] #2987: Terminal bell when you hit backspace in an empty
  - From: Mutt
- Re: [Mutt] #2987: Terminal bell when you hit backspace in an empty
  - From: Mutt
- Re: [Mutt] #2987: Terminal bell when you hit backspace in an empty
  - From: Vincent Lefevre

Prev by Date: Re: [Mutt] #2986: Quick way to restart
Next by Date: Re: [Mutt] #2987: Terminal bell when you hit backspace in an empty
Previous by thread: Re: [Mutt] #2986: Quick way to restart
Next by thread: Re: [Mutt] #2987: Terminal bell when you hit backspace in an empty
Index(es):
- Date
- Thread