Merge branch 'master' of ssh://propellor.branchable.com

2014-12-15 11:44:55 -04:00 · 2014-12-15 11:44:55 -04:00 · a4307f85a5
parent fbf9cc6f2b c164e48096
commit a4307f85a5
1 changed files with 8 additions and 0 deletions
--- a/doc/security/comment_7_ebbb6f3617c879715a35900a07ea1909._comment
+++ b/doc/security/comment_7_ebbb6f3617c879715a35900a07ea1909._comment
@ -0,0 +1,8 @@
+[[!comment format=mdwn
+ username="https://www.google.com/accounts/o8/id?id=AItOawkgUir7k_amh9RFp4D3QutX1fGh_nd7ko4"
+ nickname="Philipp"
+ subject="Passwords in PrivData"
+ date="2014-12-13T18:25:23Z"
+ content="""
+I wonder if there could be a shortcut in PrivData handling that hashes the input with crypt() instead of passing it raw to a machine. For instance passwords are stored in plain on the target machines, while this is not required to set the password in shadow: the hash would suffice. I think this page should at least spell out that fact.
+"""]]