Menu
▾
▴
Re: [Firebird-devel] crypt plugins
|
From: Alex P. <pe...@in...> - 2004-09-23 11:06:07
|
Milan Babuskov wrote: > Alex Peshkov wrote: > >> It seems to me that I've described them in my letter - we can't >> prevent stealing hashes of passwords (at least for CS on posix). >> Current hashes may be relatively easy brutforced on a modern CPUs. >> Therefore let's try to make them hard to brutforce. The best way is >> to let people use that hashes they trust. Therefore - crypt plugins. > > > Has anyone considered using LDAP for authentication (as an > alternative)? Firebird would only need to hook up to LDAP and use it's > mechanism for storing/checking passwords. It would enable easier > administration (for users) and leave the password issue to the tool > that is specialized for it. There many different auth methods. LDAP is not universal thing, some small networks don't use it. We should better think about having auth plugins - using them it will be able to use LDAP, PAM, NTLM, any other, supported by OS, or even our own, I mean keeping users' list in any database instead of special (personallu I don't like this idea, but if soneone needs such mode, he can do it). A. |
