Password storage

Add your suggestions for improving Poker Mavens

Password storage

Postby selene » Fri Feb 06, 2009 12:55 pm

Hey Kent. I was wondering about changing the way passwords are stored, basically encrypting them on disk so that they're not easily readable. Not really a high priority, but it's something we've been thinking about.
selene
 
Posts: 44
Joined: Tue Jun 17, 2008 1:29 pm

Re: Password storage

Postby Kent Briggs » Fri Feb 06, 2009 1:15 pm

selene wrote:Hey Kent. I was wondering about changing the way passwords are stored, basically encrypting them on disk so that they're not easily readable. Not really a high priority, but it's something we've been thinking about.


I'll probably switch to a hash-only storage system on the next major version so that passwords aren't stored on the server at all. I'll have to replace the password recovery system with some kind of password reset system, however. In the mean time, it's crucial that only trusted people have physical access to your server and the Remote Admin and API passwords.
Kent Briggs - [email protected]
Briggs Softworks - http://www.briggsoft.com
Kent Briggs
Site Admin
 
Posts: 3763
Joined: Wed Mar 19, 2008 8:47 pm

Re: Password storage

Postby selene » Sun Feb 08, 2009 1:33 pm

Yep, just something I wanted to bring up. Thanks again Kent.
selene
 
Posts: 44
Joined: Tue Jun 17, 2008 1:29 pm


Return to Wish List

Who is online

Users browsing this forum: No registered users and 1 guest

cron