stackoom
  简体   繁体   中英

saving password in cpp application

 原文  2018-12-19 15:40:04       c++/ qt/ embedded-linux

Question

Working on a Qt application on embedded linux which requires to store the username, password kind of sensitive information.

I'm currently using QStringLiteral to store this info. Is this safe to do? These aren't visible when ran against strings binary. What are the available options / solutions?

SqlCipher is available but again it needs a password / key. Any suggestions

1 answers

solution1
 2  2018-12-19 15:53:33

You should never store passwords! There is no way to do that securely, not in Qt nor in anywhere else!

I would recommend you to generate a random number/salt, add the password from the user and run a secure hash on that data. For example MD5, or even better SHA1 (thanks to Ted Lyngmo). Store the result. Then you can even take a plain text file as it is very hard to get from that data back to the original password.

If security is not that big for you, you could use something like: 

QString result = QString(QCryptographicHash::hash((password+salt),QCryptographicHash::Md5).toHex());

and safe the result in QSettings.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Sanitize password string in cpp Password validation program cpp Porting a CPP application to Android Console like application in CPP Build cpp application Docker does not start cpp application Saving a txt file into a folder in the same folder as the cpp file in C++ How does yaml-cpp reorder the nodes when saving? Auto formatting code in vim when saving .cpp file Debugging in Eclipse a Cocos2dx application (Cpp)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM