[clug] A Question About Password Handling and Authentication Mechanisms

jm jeffm at ghostgun.com
Wed Nov 26 02:21:26 MST 2014

Don't worry definitely not think about doing that. For one thing it 
takes years to do it badly.

On 26/11/2014 6:11 pm, Brad Hards wrote:
> annel in a recoverable form. Does anyone know of
> such a beast?
> Probably lots.  Digest auth is one example:
> http://en.wikipedia.org/wiki/Digest_access_authentication
> Unless you've got a strong background and peer review of your auth mechanism,
> please don't invent one. Its very easy to make a mistake that renders the
> whole thing worthless and not realise it. Also interoperability is already
> hard enough without adding more options.
> Brad


More information about the linux mailing list