FileZilla FTP Client Adds Support for Master Password That Encrypts Your Logins

Found on Bleeping Computer on Saturday, 27 May 2017

In November 2016, a user frustrated with Koose's stance forked the FileZilla FTP client and added support for a master password via a spin-off app called FileZilla Secure.

The author of FileZilla Secure took this action after his computer was infected with malware, and the malware stole the FileZilla password trove, a file named sitemanager.xml.

So it only took more than a decade to implement a security setting that should have existed since the beginning. Every single security how-to tells you not to store passwords in plaintext, but FileZilla knew better. Nothing happened for 10 years, but suddenly this essential security featre is implemented (but not activated by default) after someone else forked the software and fixed this bug, siphoning from the original FileZilla userbase. With all that said, the software has secured a position on the "never install" list after FileZilla supported adware.

Browse all articles« Previous « » Next »