There is only one
way, passwords should be encrypted and should not be displayed in clear
text by anyone.
-----Original Message-----
From: Kaplan, Jim [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 05, 2002 10:01 AM
To: '[EMAIL PROTECTED]'
Subject: Question from a UserAn AuditNet user submitted the following questionWe have an accounting application that shows all the user passwords in clear text when the delegated data owner (finance head- highest rights)invokes the option. what is the solution/mgmt. recommendation to mask the passwords (SQL database)?Any IT auditors with an answer?
