[
https://issues.apache.org/jira/browse/OFBIZ-1151?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12513173
]
Guido Amarilla commented on OFBIZ-1151:
---------------------------------------
Jeremy
Are you talking about adding a salt to the password?
Ref: http://en.wikipedia.org/wiki/Salt_(cryptography)
In this case it would increase security, but the seed data passwords would
become invalid.
It would be even safer for each implementation if you keep this salt secret.
> Passwords are not seeded
> ------------------------
>
> Key: OFBIZ-1151
> URL: https://issues.apache.org/jira/browse/OFBIZ-1151
> Project: OFBiz
> Issue Type: Improvement
> Components: party
> Affects Versions: SVN trunk, Release Branch 4.0
> Reporter: Wickersheimer Jeremy
> Priority: Minor
>
> Password are currently hashed but not seeded which may be a security issue.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
