Closed Bug 484974 Opened 16 years ago Closed 16 years ago

Some sumo passwords stored as plaintext in database

Categories

(support.mozilla.org :: Knowledge Base Software, task)

Product:
support.mozilla.org
Component:
Knowledge Base Software
Type:
task
Priority:
Not set
Severity:
critical

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 519559

People

(Reporter: zzxc, Unassigned)

Details

(Whiteboard: tiki_bug tiki_upstreamed)

Quite a few sumo passwords seem to be stored in the "valid" column of the users_users. The password stored in this column for me is a very old password, so password updates don't seem to get stored here. For security, an SQL update should be run to erase this column for existing users, and the bug that results in passwords being placed here should be fixed.
Any update on this security bug? IT can easily run a SQL query to wipe the column, but the underlying bug needs to be fixed first.
This was fixed in 1.4.0.1
Status: NEW → RESOLVED
Closed: 16 years ago
Resolution: --- → DUPLICATE
Whiteboard: tiki_bug tiki_upstreamed
These bugs are all resolved, so I'm removing the security flag from them.
Group: websites-security
You need to log in before you can comment on or make changes to this bug.