2009/5/4 Christopher Arndt <[email protected]> > > Paul Johnston schrieb: > > So, this is a call to the authors of all web authentication libraries. > > Add JavaScript MD5 as an authentication mechanism. And if support > > becomes widespread, the internet becomes a little bit safer for > > everyone. > > I'm surprised that no one has mentioned it yet, but obviously with such > a scheme, you have to store the passwords in clear text on the server > side, don't you?
Not if you challenge the hashed value instead of the password itself I guess. > This is just not acceptable for some sites, so any > authentication scheme that requires this, can only be ever an option. Totally agree. Christophe --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears Trunk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/turbogears-trunk?hl=en -~----------~----~----~----~------~----~------~--~---
