Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Click here to return to the 'Security warning' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Security warning
Authored by: hughescr on Mar 22, '04 03:15:29PM

As has been pointed out, WHOIS does confirm that this site is run by Vonage, so you're probably safe giving it your username/password. However, I'd be very very careful about creating some of the recommended applications that Vonage describes/suggests on that page. While the plugin-type applications are probably generally fairly safe (would be nice to have that applescript use the Keychain instead of hardcoding username/password into it -- I'll hack that up and post change later), I'd very strongly advise against the "add this functionality to your website" type stuff. You can make your site do the URL call at the backend (ie not expose your username/password to site visitors), but it's still not a great idea, unless you want to expose yourself to phone DoS attacks.

[ Reply to This | # ]
Security warning
Authored by: hughescr on Mar 22, '04 03:57:56PM

Bah -- the applescript "Keychain Scripting" helper app doesn't let you actually get keys from the keychain, as far as I can tell. Am I going to have to write a scripting helper just to read a key from the keychain?

[ Reply to This | # ]
Security warning
Authored by: blalor on Dec 09, '04 09:01:31AM
got it:

tell application "Keychain Scripting"
	set theKey to first Internet key of current keychain whose server is ""
	display dialog "userid: " & (account of theKey) & "; password: " & (password of theKey)
end tell
That works for me because I let Safari save my userid and password for the form in the upper-right corner of I get prompted twice by the keychain, however.
I've got about 200 keychain entries, and this takes a few seconds to run; not terribly zippy.
You could create a new keychain entry just for this little app, but I like to re-use things when possible.

[ Reply to This | # ]