It feels like we should do something like the encryption push, but for non-plaintext passwords. On 19 Dec 2014 18:32, "Sam Whited" <s...@samwhited.com> wrote:
> Another great example of why you should ditch DIGEST-MD5 and store your > passwords as SCRAM bits. > > —Sam > > On 12/19/2014 09:24 AM, Peter Viskup wrote: > > Hi all, > > thought it would be interesting to the audience of this mailinglist. > > > > http://pinky.jabb.im/2014/12/jabbim-bezpecnostni-problem-security.html > > > > Best regards, > > > > -- > Sam Whited > pub 4096R/54083AE104EA7AD3 > https://blog.samwhited.com > >