Comment 10 for bug 1016253
Revision history for this message
| Aaron Wells (u-aaronw) wrote Re: Authenticated RSS feeds should encrypt login credentials | #10 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
And here's the fix to issue #2 mention in my previous comment, "Don't send the plaintext passwords (and/or usernames and/or URLs) to the user's browser:
https:/
I think we should push this with the security release early this week, and we can work on encrypting them in the database for the next release.