deblan-mirror/picodav
deblan-mirror/picodav
1
0
Fork 0
mirror of https://github.com/kd2org/picodav.git synced 2024-05-02 22:43:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

clarify password hashing

Browse source 
Code hashes (a best practice) passwords rather than encrypting them.
This commit is contained in:
clach04 2023-04-02 08:53:08 -07:00 committed by GitHub
parent 706c7ce880
commit dd83f184a9
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
README.md
View file

@ -71,9 +71,9 @@ password = verySecret
write = true
```
Note that PicoDAV will replace this password with an encrypted version the next time it is accessed, don't worry about that, this is for extra safety, just in case the `.picodav.ini` is accessed by a hacker if you made mistake in your web server configuration.
Note that PicoDAV will replace this password with a hashed version the next time it is accessed, don't worry about that, this is for extra safety, just in case the `.picodav.ini` is accessed by a hacker if you made mistake in your web server configuration.
Here is an example of the password once it has been encrypted:
Here is an example of the password once it has been hashed:
```
password = '$2y$10$fbdabTjNPN3gMAUlaSEoR.kKHLnh0yMGneuJ7P2AOhSSNr8gUaCPu'