This repository has been archived by the owner on Nov 23, 2024. It is now read-only.
Token cache 'oauth-tokens.sqlite' unprotected #118
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
After authentication, tokens are stored in ~/.flickr/oauth-tokens.sqlite and on my system I found both this directory and file were world readable. I suggest when creating database, set permission to be only readable by user that did the authenticating to prevent any unintentional use by others on a system.
The text was updated successfully, but these errors were encountered: