Fred has put together a lovely SHA-256 auth backend we should use, since switching to it is essentially free right now and it's at least 255 better than Django's default SHA-1. This means we have to wipe out all currently stored passwords in auth_user.password, but that's not a particularly big deal.
Component: General → Users and Groups
Status: NEW → RESOLVED
Last Resolved: 7 years ago
Resolution: --- → FIXED
Verified only able to log in using current password
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.