Comment 2 for bug 1016253
Revision history for this message
| Darren James Harkness (darren-athabascau) wrote Re: Authenticated RSS feeds should encrypt login credentials | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)
The scope of this is a bit larger than the LDAP credentials, given the potential variety in accessible domains.
One could potentially use key-based encryption, storing the key in config.php, using mcrypt. It wouldn't be bulletproof, but it would prevent against SQL injection attacks or misplaced database dumps.