| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Issue #2559335 by epophoto, cilefen, andrewmk: password-hash.sh is hardcoded ↵ | David Rothstein | 2015-10-12 |
| | | | | | to use "/usr/bin/php" | ||
| * | Stripping CVS keywords | The Great Git Migration | 2011-02-25 |
| | | |||
| * | - Patch #723802 by pwolanin, grendzy: convert to sha-256 and hmac from md5 ↵ | Dries Buytaert | 2010-05-01 |
| | | | | | and sha1. | ||
| * | Roll-back of users -> user table name change in #330983: Broken pgsql is no fun. | Angie Byron | 2009-02-26 |
| | | |||
| * | #330983 by recidive and boombatower: Rename users/users_roles tables to ↵ | Angie Byron | 2009-02-18 |
| | | | | | user/user_role for consistency. | ||
| * | - Patch #358006 by gcopenhaver: fixed spelling errors. | Dries Buytaert | 2009-01-13 |
| | | |||
| * | - Patch #349504 by keith.smith: clean up sentence spacing in code comments. | Dries Buytaert | 2008-12-20 |
| | | |||
| * | #259623 by dopry and Damien Tournoud: Convert includes/requires to use ↵ | Angie Byron | 2008-09-20 |
| | | | | | absolute paths. | ||
| * | - Patch #29706 by pwolanin, solardiz, et al: more secure password hashing. | Dries Buytaert | 2008-03-31 |
| This is a big and important patch for Drupal's security. We are switching to much stronger password hashes that are also compatible with the Portable PHP password hashing framework. The new password hashes defeat a number of attacks, including: - The ability to try candidate passwords against multiple hashes at once. - The ability to use pre-hashed lists of candidate passwords. - The ability to determine whether two users have the same (or different) password without actually having to guess one of the passwords. Also implemented a pluggable password hashing API (similar to how an alternate cache mechanism can be used) to allow developers to readily substitute an alternative hashing and authentication scheme. Thanks all! | |||
 |
index : brdo | |
| Web Sekce BRĎO | ctibor@brancik.cz |
| summaryrefslogtreecommitdiff |