Don't use -A on set_password()

Create issue
Issue #3 resolved
Pedro Melo created an issue

Hi,

the current code of set_password() calls add-generic-password with the -A option, but this option is marked as insecure and shouldn't be used according to the docs.

I experimented with a version with this option removed, and I could still read old passwords and new passwords created with and without -A.

I suggest to remove it.

I can provide a patch if you concur.

Comments (2)

  1. Marcin Kasperski repo owner

    I just copied this option from somewhere. As you say it is not needed for the code to work, I'll remove it.

  2. Log in to comment