Modify ↓
Opened 14 years ago
Closed 14 years ago
#7395 closed enhancement (duplicate)
[patch] Allow md5 hashed passwords for htpasswd file
| Reported by: | Peter Palfrader | Owned by: | Steffen Hoffmann |
|---|---|---|---|
| Priority: | normal | Component: | AccountManagerPlugin |
| Severity: | normal | Keywords: | htpasswd file |
| Cc: | Peter Palfrader | Trac Release: | 0.11 |
Description
Hi,
setting password_store to HtPasswdStore will cause the plugin to store passwords using the standard DES crypt which is kinda weak and only supports passwords of up to 8 characters.
All the infrastructure needed to support stronger hashes is already there, but I did not see any (obvious) way to actually enable it.
So here's a tiny patch that creates a HtPasswdStoreMD5 password store. This is against the .11, but I hope it'll also apply against trunk.
Attachments (1)
Change History (4)
Changed 14 years ago by
| Attachment: | 0002-Add-a-HtPasswdStoreMD5.patch added |
|---|
comment:1 Changed 14 years ago by
| Cc: | Peter Palfrader added; anonymous removed |
|---|
comment:2 Changed 14 years ago by
| Keywords: | htpasswd file added |
|---|---|
| Owner: | changed from Matt Good to Steffen Hoffmann |
| Summary: | md5 hashed passwords for htpasswd → Allow md5 hashed passwords for htpasswd file |
comment:3 Changed 14 years ago by
| Resolution: | → duplicate |
|---|---|
| Status: | new → closed |
| Summary: | Allow md5 hashed passwords for htpasswd file → [patch] Allow md5 hashed passwords for htpasswd file |
Just flag patch availability here. I'll put down a note regarding it in #2282 as well.
Note: See
TracTickets for help on using
tickets.
Sorry for spotting it that late. This has been fixed recently in changeset [9274], actually allowing even more flexibility. Anyway, thanks for taking your time and preparing the suggested patch.
I'd be happy, if you could review current trunk regarding this issue, as I'm preparing a release for 0.11 branch, where this certainly should go in.