httpd-modules-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Frank Jones" <>
Subject Re: Patch for mod_authn_dbd plaintext auth
Date Sat, 09 Jun 2007 14:09:22 GMT
On 6/9/07, Mark Constable <> wrote:
> I personally think it's a valid option to provide and I lean
> towards thinking it only applies to the DBD level. A crypted
> (or better) password hash in a plain text .htaccess is a good
> idea but a database is already a binary blob so both would
> prevent trivial accidental viewing of passwords.

This isn't directly relevant to your question, but I think it's
important to point out that while sqlite databases are binary, they
aren't really blobs. Try running "strings" on a sqlite database and
you'll see what I mean.

View raw message