Hi, One of biggest security issue in default trytond installation is the admin_password that is in clear text in trytond.conf.
This is a legacy from OpenERP to allow newbie users to setup a database from the client easily. I propose to change the cleared hardcoded password with a validation of the password of the user running trytond. What do you think? -- Cédric Krier B2CK SPRL Rue de Rotterdam, 4 4000 Liège Belgium Tel: +32 472 54 46 59 Email/Jabber: [email protected] Website: http://www.b2ck.com/
pgphf4xtApt5a.pgp
Description: PGP signature
