[jdev] plaintext passwords hack
Peter Saint-Andre
stpeter at stpeter.im
Wed Dec 16 21:25:19 CST 2009
On 12/16/09 6:12 PM, Mihael Pranjić wrote:
> For a start you should really have you server very well secured. Very
> restriced access to anything, not letting mysql server or whatever to be
> accessed by anything else than localhost. No root ssh login, only
> certificate login, and so on and so on... So I think keeping anyone from
> even near the database seems a better solution for now.
Those are good suggestions. Over at the jabber.org service we're
reviewing our security policies along these lines, so thanks for the post.
Peter
--
Peter Saint-Andre
https://stpeter.im/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6820 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://www.jabber.org/jdev/attachments/20091216/9814eafb/attachment.bin>
More information about the JDev
mailing list