tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 22268] New: - Admin truncates user password in 32 characters
Date Sat, 09 Aug 2003 05:11:20 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=22268>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=22268

Admin truncates user password in 32 characters 

           Summary: Admin truncates user password in 32 characters
           Product: Tomcat 4
           Version: 4.1.27
          Platform: Macintosh
        OS/Version: MacOS X
            Status: NEW
          Severity: Minor
          Priority: Other
         Component: Webapps:Administration
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: mmura@mx.biwa.ne.jp


In 'Edit Existing User Properties' screen, the password field has
only 32 chars long.
So, if we set Admin webapp to use SHA digest, editing user properties
from this screen makes password information collapsed,
because SHA digest has always 40 chars long.

Mime
View raw message