On Wed, Oct 27, 2010 at 11:29:46PM +0200, Tomas Hlavaty wrote:
> > Well - in a commercial application, not in the Wiki - if he gets hold
> > of the data, then we don't need to worry about the passwords any more
> > :-D
> yes, it's all about prevention;-)  Storing plain text passwords is no
> prevention.

But encrypting them creates only an illusion of safety.

We should not waste our time on irrelevant issues. Whether passwords are
encrypted locally or not is just a matter of cosmetics. What really
counts are two issues:

   1. The _whole_ database must be safe from any external access
   2. We must _trust_ the administrator(s) of the machine

It is ridiculous if we talk about allowing changing passwords and/or
sending them via unencrypted mails, and at the same time make so much
fuss about hiding them within the machine. Instead, all effort should go
into protecting the system itself.

- Alex
UNSUBSCRIBE: mailto:picol...@software-lab.de?subject=unsubscribe

Reply via email to