Issue 200: A more secure sql-implementation
Status:  New
Owner: ----
Reported by ulug...@googlemail.com, Mar 29, 2010
I implemented an aes-solution for password-storage and made the
database-entries less redundant.

In case the database is successfully attacked and the rest of the server is
still secure. the passwords are not revealed. The passwords are encrypted
using salted AES encryption using the databasepassword as the key.

I have attached the changed files along with a diff.
mysql.py
8.1 KB   View   Download
db-setup.mysql
912 bytes   View   Download
mysql.py.diff
6.2 KB   View   Download
db-setup.mysql.diff
564 bytes   View   Download