Opened 10 years ago
#43 new enhancement
Update Auth_SQL::encryptPassword() to use a unique salt for each user, stored in the DB.user_tbl
Reported by: | quinn | Owned by: | quinn |
---|---|---|---|
Priority: | minor | Milestone: | 2.1 |
Keywords: | Cc: |
Description
See recommendations at the end of this document: http://nakedsecurity.sophos.com/2013/11/20/serious-security-how-to-store-your-users-passwords-safely/
Note: See
TracTickets for help on using
tickets.