[jadmin] Re: jabberd14 'crypt' password storage in postgressql
Martel Valgoerad
martel at post.pl
Wed Jun 13 11:16:46 CDT 2007
Norman Rasmussen wrote:
> IANASE (I am not a security expert), i.e. I'm not paid to work in
> security, but:
Thanks, Norman. Especially for taking time to explain this in such detail.
> So I guess (assuming you trust the database and server admin(s)),
> storing encrypted unhashed passwords is the preferred method.
Now, does any of the free, open source servers allow for keeping passwords in
such a way?
--
Martel Valgoerad aka Michal Minicki | martel at aie.pl | http://aie.pl/martel.asc
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
"Idleness is not doing nothing. Idleness is being free to do anything." --
Floyd Dell
More information about the JAdmin
mailing list