Side effect in RFBServer >>encryptPassword:

[Lukas Renggli]

> I just passed several hours tracking a bug, and finally figured out the its
> related to *RFBServer>>encryptPassword:* that *destroys* the password string
> passed as argument (replaces all characters with $0).

I guess that's a security measure.

> Couldn't that code be now simply replaced by a call to *GRPlatform current
> secureHashFor: password*? (That would also require adapting
> #authenticateChallenge:response:)

Yes, but RFB is highly dependent on Pharo, so it doesn't really make
sense to make it also depend on Grease.

Lukas

-- 
Lukas Renggli
www.lukas-renggli.ch