[clug] A Question About Password Handling and Authentication Mechanisms
jm
jeffm at ghostgun.com
Wed Nov 26 02:21:26 MST 2014
Don't worry definitely not think about doing that. For one thing it
takes years to do it badly.
On 26/11/2014 6:11 pm, Brad Hards wrote:
> annel in a recoverable form. Does anyone know of
> such a beast?
> Probably lots. Digest auth is one example:
> http://en.wikipedia.org/wiki/Digest_access_authentication
>
> Unless you've got a strong background and peer review of your auth mechanism,
> please don't invent one. Its very easy to make a mistake that renders the
> whole thing worthless and not realise it. Also interoperability is already
> hard enough without adding more options.
>
> Brad
>
!DSPAM:54759b9612411083214755!
More information about the linux
mailing list