shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Les Hazlewood <lhazlew...@apache.org>
Subject Re: France to require unhashed password storage
Date Mon, 25 Apr 2011 18:29:52 GMT
That is absolutely insane!  I hope the IT organizations in France
fight this.  It puts all of them at extreme risk/liability.  Clearly
the lawmakers are clueless - it is the citizens' duty to overturn
this.

Wow...

Les

On Mon, Apr 25, 2011 at 12:35 AM, Emmanuel Lecharny <elecharny@gmail.com> wrote:
> On 4/25/11 6:48 AM, Alan D. Cabrera wrote:
>>
>> Interesting
>>
>> http://boingboing.net/2011/04/11/france-to-require-cl.html
>
> That's crazy ! This has been voted in february, and requires that any
> provider has to keep the password and the data needed to check it.
>
> In other words, you must store a two-ways encrypted password. This is a
> MAJOR security risk. I don't even understand how possibly such a law can
> have been voted silently without anybody noticed it...
>
> Time to make some noise around it, now.
>
> Man, is France worse than Libya, Syria or Iran ?

Mime
View raw message