Low Security Low Security
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Low Security

Started by godlie, April 06, 2004, 02:40:12 PM

Previous topic - Next topic

0 Members and 2 Guests are viewing this topic.

Print
Go Down Pages1
User actions

godlie

April 06, 2004, 02:40:12 PM
hi
im scared that the passwords still written in plain form in the database
isn't this a really important ?
think about it
if you need someone that helps you
you can count on me

mfg

Nibbler

#1
April 06, 2004, 02:46:01 PM
If it scares you that much, use the mod to store the passwords as md5 hashes in the mod board. Please only use the 1.3 testing section for bugs with existing 1.3 features.

godlie

#2
April 06, 2004, 02:48:20 PM
isn't this the false way?
i need an mod that i get basic security features

tell me is this realy that what you want ?

Joachim Müller

#3
April 07, 2004, 07:33:29 AM
there have been several discussions on this board about passwords being stored in plain text vs. md5-encrypted. There are pros and cons for every solution. If you want to lead this discussion on, please search the relevant threads. Just as food for thought: if someone manages to hack into areas on your site where the passwords can be seen (e.g. phpMyAdmin), one of the things you won't have to worry about is the security of your user's passwords, as the attacker could then do virtually anything.

GauGau
Print
Go Up Pages1
User actions