Re: [PHPLIB-DEV] Incompatible change to active_sessions and auth_user From: Kristian Koehntopp (kris <email protected>)
Date: 11/08/99

On Mon, Nov 08, 1999 at 11:39:55AM -0600, Adam N. Thompson, MCNE, MCSE wrote:
> KK: commit what you've got, (to a separate branch if need be) and I'll
> fix the column names using /bin/ed if I have to...

Don't worry. I will do it... :-)

> > Apart from that, I like the proposed changes, expecially those related to
> > auth_user. Maybe we should force the usage of encrypted pwds in the db,
> > I'm not quite sure about it, but maybe it could be a GOOD THING(tm).
>
> Are you referring to the enforcing the use of auth_md5 ? If it worked
> universally, I would agree with you, but it still does not work
> everywhere.

Will not happen. I have applications that rely on plaintext
passwords being present in auth_users, because I generate
several encrypted representations from there. We will have a
pwenc column describing how this particular password is encoded
and we will have at least plain, base64, crypt and md5 as valid
values in this column. Encoding can be different for each user.

Kristian

-
PHPLIB Developers Mailing List. Send messages to <phplib-dev <email protected>>.
To unsubscribe, send "unsubscribe" to <phplib-dev-request <email protected>> in
the body, not the subject, of your message.