URL: https://github.com/freeipa/freeipa/pull/317
Title: #317: Unify password generation across FreeIPA

mbasti-rh commented:
Please replace this by something sane,
return sha1(ipautil.ipa_generate_password()).hexdigest()

security by obscurity worked well in Roman empire, but now please generate 
directly password with entropy 128bits without using sha1

See the full comment at 
Manage your subscription for the Freeipa-devel mailing list:
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Reply via email to