You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@openmeetings.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2016/04/11 07:38:25 UTC
[jira] [Commented] (OPENMEETINGS-1344) MD5 should not be used for
password encryption
[ https://issues.apache.org/jira/browse/OPENMEETINGS-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15234510#comment-15234510 ]
ASF subversion and git services commented on OPENMEETINGS-1344:
---------------------------------------------------------------
Commit 1738512 from [~solomax] in branch 'application/branches/3.1.x'
[ https://svn.apache.org/r1738512 ]
[OPENMEETINGS-1344] SHA256 with salt and 1000 iterations used to encrypt passwords
> MD5 should not be used for password encryption
> ----------------------------------------------
>
> Key: OPENMEETINGS-1344
> URL: https://issues.apache.org/jira/browse/OPENMEETINGS-1344
> Project: Openmeetings
> Issue Type: Bug
> Components: BuildsAndReleases
> Affects Versions: 3.1.1
> Reporter: Maxim Solodovnik
> Assignee: Maxim Solodovnik
> Fix For: 3.1.2
>
>
> MD5 should not be used for password encryption
> Stronger algorithm should be used
> Admin dashboard with ability to force password change should be added
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)