You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@openmeetings.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2016/04/11 07:38:25 UTC

[jira] [Commented] (OPENMEETINGS-1344) MD5 should not be used for password encryption

    [ https://issues.apache.org/jira/browse/OPENMEETINGS-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15234510#comment-15234510 ] 

ASF subversion and git services commented on OPENMEETINGS-1344:
---------------------------------------------------------------

Commit 1738512 from [~solomax] in branch 'application/branches/3.1.x'
[ https://svn.apache.org/r1738512 ]

[OPENMEETINGS-1344] SHA256 with salt and 1000 iterations used to encrypt passwords

> MD5 should not be used for password encryption
> ----------------------------------------------
>
>                 Key: OPENMEETINGS-1344
>                 URL: https://issues.apache.org/jira/browse/OPENMEETINGS-1344
>             Project: Openmeetings
>          Issue Type: Bug
>          Components: BuildsAndReleases
>    Affects Versions: 3.1.1
>            Reporter: Maxim Solodovnik
>            Assignee: Maxim Solodovnik
>             Fix For: 3.1.2
>
>
> MD5 should not be used for password encryption
> Stronger algorithm should be used
> Admin dashboard with ability to force password change should be added



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)