Closed
Bug 557861
Opened 14 years ago
Closed 14 years ago
Registration hashes passwords with exec() and hardcoded slappasswd path
Categories
(Cloud Services Graveyard :: Server: Sync, defect)
Cloud Services Graveyard
Server: Sync
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: lorchard, Assigned: lorchard)
Details
Attachments
(1 file)
|
1.52 KB,
patch
|
telliott
:
review+
|
Details | Diff | Splinter Review |
In setting up the weave-registration stack on my laptop, I noticed that the mozilla auth driver is shelling out to run slapppasswd to generate {SSHA} passwords.
I have a hunch that this might not scale well - and the path to slappasswd is hardcoded, which made it hard to run on my laptop.
This can be done full within PHP.
|
Assignee | |
Updated•14 years ago
|
Assignee: telliott → lorchard
|
|
Assignee | |
Comment 1•14 years ago
|
||
Attachment #437616 -
Flags: review?
|
|
Assignee | |
Updated•14 years ago
|
Attachment #437616 -
Flags: review? → review?(telliott)
|
||
Updated•14 years ago
|
Attachment #437616 -
Flags: review?(telliott) → review+
|
|
||
Comment 2•14 years ago
|
||
Comment on attachment 437616 [details] [diff] [review] patch to generate {ssha} hashed passwords in PHP Looks good, even the vim comment :)
|
|
Assignee | |
Updated•14 years ago
|
Status: NEW → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
|
|
Assignee | |
Comment 3•14 years ago
|
||
https://hg.mozilla.org/labs/weaveserver-registration/rev/544cfa94c8e1
|
||
Updated•1 year ago
|
Product: Cloud Services → Cloud Services Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•