[Users] [Bug 3099] Username and password stored in plain text

noreply at thewildbeast.co.uk noreply at thewildbeast.co.uk
Tue Mar 11 12:59:54 CET 2014


--- Comment #11 from Jan Kriho <Erbureth at seznam.cz> ---
(In reply to comment #7)
> > However, the best way to secure a password is not to store it anywhere,
> > as requested in the second paragraph of the original bugreport
> Sure, that's why I marked it as enhancement.

I agree with you that storing paswords encrypted is a nice-to-have enhancement.
However I still consider requiring user to store his password (and only
offering it to do unencrypted) a security bug.

You are receiving this mail because:
You are the assignee for the bug.

More information about the Users mailing list