We are currently directly serializing server passwords in the connection.db file. We should at least make a simple hash of them to get a bit of security through obscurity.
Log in to post a comment.
