Posted by: Anonymous
on March 17, 2008 01:43 PM
I whole-heartedly agree with you. Pidgin has worded it very well: http://developer.pidgin.im/wiki/PlainTextPasswords -- scrambling passwords is a waste of time. If an attacker has read access to the file already, then it doesn't matter whether it's rot13-d. plaintext, or some custom solution. Your security has already been compromised.
Good work on the app! This is the first I've heard of it but I've been wishing I had something that did exactly this for a long time!