Sathyan Catari wrote:
>> In the case where the password is encrypted, I still don't understand
>> what password (or should I say "secret key") you're using to encrypt
>> the data. If it's a fixed password wired into the code, don't even
>> waste your time doing that because it provides no security at all.
> We don't do anything fancy. Its just a xor on String.getBytes() of
> password string.
Um, that's not encryption, that's obfuscation. It provides nothing
more than a false sense of security. Are there really people who
think that's solving some problem for them?