Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Hashing of passwords in database #8

Open
mikkelgthang opened this issue Jun 26, 2020 · 0 comments
Open

Hashing of passwords in database #8

mikkelgthang opened this issue Jun 26, 2020 · 0 comments
Labels
enhancement New feature or request

Comments

@mikkelgthang
Copy link
Contributor

The passwords belonging to people's houses are being hashed before travelling through TTN, and then unhashed by the server. This is all fine. The passwords are however not hashed before being saved to the database files. These files are only ment to be stored locally and aren't human readable, but in case someone has acces to the server program and the corresponding database files for a neighborhood, it would be possible to retrieve the information fairly easy.

Therefore, the passwords should be hashed before being saved to the database, and the retrievel of logindata over TTN should account for this.
@mikkelgthang mikkelgthang added the enhancement New feature or request label Jun 26, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mikkelgthang