Darren J Moffat wrote: > Alan Wright wrote: > >> It's also worth noting that there is much existing practice which > >> doesn't meet this standard, but there are also new mechanisms available > >> that weren't there when much of that prior art landed in Solaris. > > > > If that is a requirement, we will use an existing reversible > > encryption on the plain text before it is stored. > > But then where would you store the key to decrypt it ?
I'll assume that's a rhetorical question, for now, based on your comment in another email that the currently defined password storage mechanism should be sufficient for this case. If password encryption is mandated as a requirement, we'll have to revisit this topic. Alan
