I was reviewing ser database. In 'subscriber' table, 'password' column keeps plain password. Wouldn't be nicer and safer to keep the password encrypted?
Thanks,
You can do that, that's what ha1 column is for. In the configuration file of ser just disable ha1 calculation:
modparam("auth_db", "calculate_ha1", no)
And make sure that ha1 column in subscriber table is populate with correct values. serctl does that automatically, or you can use gen_ha1 tool (gets installed when type make install) which will generate the HA1 hash for you.
Jan.
On 02-02 20:52, info@beeplove.com wrote:
I was reviewing ser database. In 'subscriber' table, 'password' column keeps plain password. Wouldn't be nicer and safer to keep the password encrypted?
Thanks,
-- Mohammad Khan
Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers
-
infoļ¼ beeplove.com -
Jan Janak