[Catalyst] Outcome of the "Security issue with hashed passwords
in C:P:A:Password"?
Evan Carroll
lists at evancarroll.com
Fri Apr 9 01:58:32 GMT 2010
I already patched this with a fix, it is on github and I've linked to
it and posted it on rt. Janus told me he would give me maintenance to
post it on CPAN, and he hasn't followed through yet. It fixes the
problem by permitting you to pull in a non-static salt from the DB.
http://github.com/EvanCarroll/Catalyst-Authentication-Store-DBI
--
Evan Carroll
System Lord of the Internets
More information about the Catalyst
mailing list