Subject: Developers of Sympa
List archive
- From: Aumont <address@concealed>
- To: address@concealed
- Cc: address@concealed
- Subject: Re: [sympa-dev] Encrypted password
- Date: Fri, 02 Feb 2001 11:55:02 +0100
Nicolas Brouard wrote:
> "Password are currently NOT crypted in the database. Considering that most
> people use a single password for almost any usage, this is a security
> problem. It could be crypted with a reversible algorithm, thus allowing
> password reminding. "
>
Yes we will introduce a reversible encryption asap.
> but because I don't trust the local list manager.
If you don't trusted the local listmaster, you will never have a secure
solution
Even HTTPS allow listmaster to add some logs of password in sympa itself.
Serge
--
-----------------------------------------------------------
Serge Aumont Comité Réseaux des Universités
Campus Beaulieu
35042 Rennes Cedex +33 2 998 471 47
-
Re: [sympa-dev] Mots de passe encrypt s,
Olivier LACROIX, 02/01/2001
-
RE: [sympa-dev] Encrypted password,
Nicolas Brouard, 02/01/2001
-
Re: [sympa-dev] Encrypted password,
Aumont, 02/02/2001
- RE: [sympa-dev] Encrypted password, Nicolas Brouard, 02/02/2001
-
Re: [sympa-dev] Encrypted password,
Aumont, 02/02/2001
-
RE: [sympa-dev] Encrypted password,
Nicolas Brouard, 02/01/2001
Archive powered by MHonArc 2.6.19+.