[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

How to encrypt user-passwords in UserDB

To: <minivend-users@minivend.com>
Subject: How to encrypt user-passwords in UserDB
From: "Gideon van Gelder" <gideon@swingmaster.nl>
Date: Sun, 14 Feb 1999 00:04:40 +0100
Reply-To: minivend-users@minivend.com
Sender: owner-minivend-users@minivend.com

******    message to minivend-users from "Gideon van Gelder" <gideon@swingmaster.nl>     ******

Hello everybody,

--Quoting Mike Heins:

"Because of that, I figured I should do a rework of the UserDB password
situation and they are now encrypted by default in the demo.  If enough
people feel strongly about this I will add the Variable MV_NO_CRYPT 1
as the default."

I use Minivend 3.11. When I look into userdb.gdbm, I can read all the users'
passwords.
Is there any way to encrypt these by default ? I guess, with the current
condition, if someone gets to read the userdb, he can go ahead and login as
an existing user and take advantage of an account.

B.T.W.: has anyone gotten MV to work with PGP 5.0 on a Unix system ?

Thanks very much in advance.

-Gideon van Gelder


-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

Follow-Ups:
- Re: How to encrypt user-passwords in UserDB
  - From: "Rob Zimmerman" <rob@readysite.net>

Prev by Date: Re: MiniVend 3.12 close to release
Next by Date: Re: How to encrypt user-passwords in UserDB
Prev by thread: Can't expire without DBM session ?
Next by thread: Re: How to encrypt user-passwords in UserDB
Index(es):
- Date
- Thread