Do not use user password to build authentication cache key. Use sha1() instead of md5().
Reasoning:
- This way it's more secure.
- Password change does not really invalidate the cached username/host.
Do not use user password to build authentication cache key. Use sha1() instead… Tags None Referenced Files None Subscribers None
Description
Details
Event Timeline |