[Catalyst] Security issue with hashed passwords in C:P:A:Password

Andrew Rodland andrew at cleverdomain.org
Wed Mar 24 05:58:00 GMT 2010

On Tuesday 23 March 2010 03:17:17 pm Evan Carroll wrote:
> This is broken implementation.

It would be if anything you said were true; fortunately it's not, and both 
available methods of doing salted passwords with 
Catalyst::Plugin::Authentication do salt entirely the correct way.

Your unncecessary and condescending lectures are, however, greatly appreciated 
as usual.


More information about the Catalyst mailing list