Comment 2 for bug 843048
Revision history for this message
| klmitch (q-noreply) wrote Re: Password need to be encrypted on DB | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
7020100
(Get the code!)
I would argue that any data that, in the event the backend (database) is compromised, would leak critical authentication data should be salted & hashed prior to storage. There would have to be a strong business case for storing them in plain text.