Ken, That's an elegant solution. Would you mind sending a merge request for that?
Cheers, - Marius On Thu, May 17, 2012 at 6:02 PM, Ken Dreyer <[email protected]> wrote: > On Thu, May 17, 2012 at 9:46 AM, Ken Dreyer <[email protected]> wrote: > > I think it would be better to register the LDAP or Kerberos users with > > cryptographically random passwords. What form do you recommend? > > Digging a bit more, it looks like the Crowd plugin suffers from the > same "default password in the database" problem. Here's a proposed > patch: call user.reset_password after saving the user. > > Advantages: > 1. The database password is no longer known to anyone. > 2. Reuse the same cryptographic complexity upon which the usual "reset > password" application function relies. > > - Ken > > -- > To post to this group, send email to [email protected] > To unsubscribe from this group, send email to > [email protected] > -- Marius Mårnes Mathiesen Rubyist, Shortcut AS Tel.: (+47) 92 60 95 38. http://shortcut.no -- To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected]
