Re: [jetty-users] Question regd jetty ssl configuration.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [jetty-users] Question regd jetty ssl configuration.

From: John English <john.foreign@xxxxxxxxx>
Date: Thu, 15 Jul 2021 18:52:32 +0300
Delivered-to: jetty-users@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jetty-users/>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.12.0

On 15/07/2021 18:27, Joakim Erdfelt wrote:

The `MD5:` format Credential / Password is what's known as a 1-way hash(this is not encryption)
You can take a password and generate a MD5.
Then later, when a password is provided, you can run the hash again andcompare the resulting MD5 to know if the password that was provided is amatch.


Ouch. MD5? Not terribly secure. I prefer BCrypt.

--
John English

Follow-Ups:
- Re: [jetty-users] Question regd jetty ssl configuration.
  - From: Greg Wilkins

References:
- [jetty-users] Question regd jetty ssl configuration.
  - From: TSmitha
- Re: [jetty-users] Question regd jetty ssl configuration.
  - From: Joakim Erdfelt

Prev by Date: Re: [jetty-users] Question regd jetty ssl configuration.
Next by Date: Re: [jetty-users] Question regd jetty ssl configuration.
Previous by thread: Re: [jetty-users] Question regd jetty ssl configuration.
Next by thread: Re: [jetty-users] Question regd jetty ssl configuration.
Index(es):
- Date
- Thread

Breadcrumbs