Project

General

Profile

Actions
Copy link

Bug #23208

open

Add a warning in the logs when using local auth with non-bcrypt passwords

Bug #23208: Add a warning in the logs when using local auth with non-bcrypt passwords

Added by Alexis Mousset over 2 years ago. Updated about 20 hours ago.

Status:
Pending technical review
Priority:
N/A
Assignee:
François ARMAND
Category:
Security
Target version:
8.3.7
Pull Request:
https://github.com/Normation/rudder/p...
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
No

Description

The old hashes should be replaced fro security. A rudder-users.xml access without it would very likely lead to password recovery using rainbow tables.

Updated by Alexis Mousset over 2 years ago Actions
Copy link
 #1

  • Status changed from New to In progress
  • Assignee set to Alexis Mousset

Updated by Alexis Mousset over 2 years ago Actions
Copy link
 #2

  • Status changed from In progress to Pending technical review
  • Assignee changed from Alexis Mousset to François ARMAND
  • Pull Request set to https://github.com/Normation/rudder/pull/4944

Updated by Vincent MEMBRÉ about 2 years ago Actions
Copy link
 #3

  • Target version changed from 8.0.0~beta1 to 8.0.0~beta2

Updated by Vincent MEMBRÉ about 2 years ago Actions
Copy link
 #4

  • Target version changed from 8.0.0~beta2 to 8.0.0~beta3

Updated by Alexis Mousset about 2 years ago Actions
Copy link
 #5

  • Target version changed from 8.0.0~beta3 to 8.1.0~alpha1

Updated by Vincent MEMBRÉ almost 2 years ago Actions
Copy link
 #6

  • Target version changed from 8.1.0~alpha1 to 8.1.0~beta1

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #7

  • Target version changed from 8.1.0~beta1 to 8.1.0~beta2

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #8

  • Target version changed from 8.1.0~beta2 to 8.1.0~rc1

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #9

  • Target version changed from 8.1.0~rc1 to 8.1.0

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #10

  • Target version changed from 8.1.0 to 8.1.1

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #11

  • Target version changed from 8.1.1 to 8.1.2

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #12

  • Target version changed from 8.1.2 to 8.1.3

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #13

  • Target version changed from 8.1.3 to 8.1.4

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #14

  • Target version changed from 8.1.4 to 8.1.5

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #15

  • Target version changed from 8.1.5 to 8.1.6

Updated by Vincent MEMBRÉ over 1 year ago Actions
Copy link
 #16

  • Target version changed from 8.1.6 to 8.1.7

Updated by Vincent MEMBRÉ about 1 year ago Actions
Copy link
 #17

  • Target version changed from 8.1.7 to 8.1.8

Updated by Vincent MEMBRÉ about 1 year ago Actions
Copy link
 #18

  • Target version changed from 8.1.8 to 8.1.9

Updated by Vincent MEMBRÉ 12 months ago Actions
Copy link
 #19

  • Target version changed from 8.1.9 to 8.1.10

Updated by Vincent MEMBRÉ 12 months ago Actions
Copy link
 #20

  • Target version changed from 8.1.10 to 8.1.11

Updated by Vincent MEMBRÉ 10 months ago Actions
Copy link
 #21

  • Target version changed from 8.1.11 to 8.1.12

Updated by Vincent MEMBRÉ 9 months ago Actions
Copy link
 #22

  • Target version changed from 8.1.12 to 8.1.13

Updated by Vincent MEMBRÉ 7 months ago Actions
Copy link
 #23

  • Target version changed from 8.1.13 to 8.2.6

Updated by Vincent MEMBRÉ 6 months ago Actions
Copy link
 #24

  • Target version changed from 8.2.6 to 8.2.7

Updated by Vincent MEMBRÉ 5 months ago Actions
Copy link
 #25

  • Target version changed from 8.2.7 to 8.2.8

Updated by Félix DALLIDET 4 months ago Actions
Copy link
 #26

  • Target version changed from 8.2.8 to 8.2.9

Updated by Vincent MEMBRÉ 2 months ago Actions
Copy link
 #27

  • Target version changed from 8.2.9 to 1133

Updated by Alexis Mousset 20 days ago Actions
Copy link
 #28

  • Target version changed from 1133 to 8.3.6

Updated by Vincent MEMBRÉ about 20 hours ago Actions
Copy link
 #29

  • Target version changed from 8.3.6 to 8.3.7
Actions
Copy link

Also available in: PDF Atom