[Asterisk-Users] no plain text passwords in iax.conf
Matt Riddell
matt.riddell at sineapps.com
Tue Nov 30 22:10:00 MST 2004
Karl Brose wrote:
> Other than that, one could probably encrypt/decrypt passwords when
> needed, particularly when
> they come out of a database, most of these solutions are probably more
> or less hacks.
Surely you're better off just storing the SHA hash of the password and
then simply hashing the request in the same manner. Then all you need to
do is check if the hashes match.
That way you don't need to store any passwords.
--
Cheers,
Matt Riddell
_______________________________________________
http://www.sineapps.com/news.php (Daily Asterisk News - html)
http://www.sineapps.com/rssfeed.php (Daily Asterisk News - rss)
More information about the asterisk-users
mailing list