#1942: Store passwords in hashed form
------------------------+------------------------
Reporter: dabrahams | Owner:
Type: enhancement | Status: new
Priority: major | Milestone: undecided
Version: 0.8.3p1 | Resolution:
Keywords: auth |
------------------------+------------------------
Comment (by dabrahams):
Replying to [comment:1 tom.prince]:
> I think the canonical solution to this is to load the passwords from a
file.
Yes it is. And a variety of factors make this much more painful than it
should be. You can see some evidence for this in my bbot framework.
> To have the hashes be secure, you would also have to make sure that the
hashed passwords were properly salted.
I confess that I'm not a security expert... but that wouldn't be so bad,
would it?
> A more sensible option might be to expose twisted.cred, which has
support for unix password files, among other things.
I assumed that twisted probably had some facilities for this kind of
thing, but I'm also not a twisted expert ;-)
--
Ticket URL: <http://trac.buildbot.net/ticket/1942#comment:2>
Buildbot <http://buildbot.net/>
Buildbot: build/test automation
------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network
management toolset available today. Delivers lowest initial
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________
Buildbot-commits mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/buildbot-commits
