2008-11-04 16:22:16 +00:00
|
|
|
# -*- encoding: utf-8 -*-
|
|
|
|
##############################################################################
|
2011-03-14 12:17:08 +00:00
|
|
|
#
|
2009-10-15 13:57:18 +00:00
|
|
|
# OpenERP, Open Source Management Solution
|
|
|
|
# Copyright (C) 2004-2009 Tiny SPRL (<http://tiny.be>).
|
2008-11-04 16:22:16 +00:00
|
|
|
#
|
|
|
|
# This program is free software: you can redistribute it and/or modify
|
2009-10-15 13:57:18 +00:00
|
|
|
# it under the terms of the GNU Affero General Public License as
|
|
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
|
|
# License, or (at your option) any later version.
|
2008-11-04 16:22:16 +00:00
|
|
|
#
|
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
2009-10-15 13:57:18 +00:00
|
|
|
# GNU Affero General Public License for more details.
|
2008-11-04 16:22:16 +00:00
|
|
|
#
|
2009-10-15 13:57:18 +00:00
|
|
|
# You should have received a copy of the GNU Affero General Public License
|
2010-12-29 13:38:35 +00:00
|
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
2008-11-04 16:22:16 +00:00
|
|
|
#
|
|
|
|
##############################################################################
|
2008-05-28 03:03:38 +00:00
|
|
|
{
|
2012-08-17 11:15:40 +00:00
|
|
|
'name' : 'DB Password Encryption',
|
|
|
|
'version' : '1.1',
|
|
|
|
'author' : ['OpenERP SA', 'FS3'],
|
|
|
|
'maintainer' : 'OpenERP SA',
|
|
|
|
'website' : 'http://www.openerp.com',
|
|
|
|
'category' : 'Tools',
|
|
|
|
'description': """
|
2012-07-12 06:20:15 +00:00
|
|
|
Replaces cleartext passwords in the database with a secure hash.
|
|
|
|
================================================================
|
2011-03-14 12:17:08 +00:00
|
|
|
|
2012-07-12 10:45:02 +00:00
|
|
|
For your existing user base, the removal of the cleartext passwords occurs
|
|
|
|
immediately when you instal base_crypt.
|
2011-06-15 17:31:10 +00:00
|
|
|
|
2012-07-12 10:45:02 +00:00
|
|
|
All passwords will be replaced by a secure, salted, cryptographic hash,
|
|
|
|
preventing anyone from reading the original password in the database.
|
2011-06-15 17:31:10 +00:00
|
|
|
|
2012-07-16 09:45:48 +00:00
|
|
|
After installing this module, it won't be possible to recover a forgotten password
|
2012-07-12 10:45:02 +00:00
|
|
|
for your users, the only solution is for an admin to set a new password.
|
2011-06-15 17:31:10 +00:00
|
|
|
|
2012-07-13 12:29:47 +00:00
|
|
|
Security Warning:
|
|
|
|
-----------------
|
2011-06-15 17:31:10 +00:00
|
|
|
Installing this module does not mean you can ignore other security measures,
|
|
|
|
as the password is still transmitted unencrypted on the network, unless you
|
2011-09-02 09:47:57 +00:00
|
|
|
are using a secure protocol such as XML-RPCS or HTTPS.
|
2012-07-16 09:45:48 +00:00
|
|
|
|
2011-06-15 17:31:10 +00:00
|
|
|
It also does not protect the rest of the content of the database, which may
|
|
|
|
contain critical data. Appropriate security measures need to be implemented
|
|
|
|
by the system administrator in all areas, such as: protection of database
|
2012-07-06 10:33:56 +00:00
|
|
|
backups, system files, remote shell access, physical server access.
|
2011-06-15 17:31:10 +00:00
|
|
|
|
2012-07-13 12:29:47 +00:00
|
|
|
Interation with LDAP authentication:
|
|
|
|
------------------------------------
|
2011-06-15 17:31:10 +00:00
|
|
|
This module is currently not compatible with the ``user_ldap`` module and
|
|
|
|
will disable LDAP authentication completely if installed at the same time.
|
2012-07-16 09:45:48 +00:00
|
|
|
""",
|
2012-08-17 11:15:40 +00:00
|
|
|
'depends' : ['base'],
|
|
|
|
'data' : [],
|
|
|
|
'auto_install': False,
|
|
|
|
'installable': True,
|
|
|
|
'certificate' : '00721290471310299725',
|
2008-05-28 03:03:38 +00:00
|
|
|
}
|
2011-11-22 08:51:38 +00:00
|
|
|
|
|
|
|
# vim:expandtab:smartindent:tabstop=4:softtabstop=4:shiftwidth=4:
|