Details
-
Improvement
-
Resolution: Unresolved
-
Minor
-
None
-
None
-
None
-
0
Description
Non-SSL authentication currently uses SHA1 to salt passwords. This should probably be updated to a more modern mechanism, but the performance and backwards-compatibility aspects need to be verified.