My favorites | Sign in
Project Home Downloads Wiki Issues Source
READ-ONLY: This project has been archived. For more information see this post.
Search
for
  Advanced search   Search tips   Subscriptions
Issue 200: A more secure sql-implementation
1 person starred this issue and may be notified of changes. Back to list
Status:  New
Owner:  ----


 
Reported by ulug...@googlemail.com, Mar 29, 2010
I implemented an aes-solution for password-storage and made the
database-entries less redundant.

In case the database is successfully attacked and the rest of the server is
still secure. the passwords are not revealed. The passwords are encrypted
using salted AES encryption using the databasepassword as the key.

I have attached the changed files along with a diff.
mysql.py
8.1 KB   View   Download
db-setup.mysql
912 bytes   View   Download
mysql.py.diff
6.2 KB   View   Download
db-setup.mysql.diff
564 bytes   View   Download

Powered by Google Project Hosting