odoo
/
odoo
2
0
Fork 0
Code Pull Requests Releases Activity

[IMP] base_crypt: more doc in module description, mention of conflict with users_ldap 

bzr revid: odo@openerp.com-20110615173110-xlt1yo5a1tuzq9dc
This commit is contained in:
Olivier Dony 2011-06-15 19:31:10 +02:00
parent 85ad1beebc
commit 59664e0724
1 changed files with 27 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
addons/base_crypt/__openerp__.py
View File

@ -26,18 +26,35 @@
"website" : "http://www.openerp.com",
"category" : "Tools",
"description": """
This module replaces the cleartext password in the database with a password hash.
=================================================================================
Replaces cleartext passwords in the database with a secure hash
===============================================================
For your existing user base, the removal of the cleartext
passwords occurs the first time a user logs into the database,
after installing base_crypt.
It prevents anyone from reading the original password.
For your existing user base, the removal of the cleartext passwords occurs the first time
a user logs into the database, after installing base_crypt.
After installing this module it won't be possible to recover a forgotten password for your
users, the only solution is for an admin to set a new password.
All passwords will be replaced by a secure, salted, cryptographic
hash, preventing anyone from reading the original password in
the database.
After installing this module it won't be possible to recover a
forgotten password for your users, the only solution is for an
admin to set a new password.
Security Warning
++++++++++++++++
Installing this module does not mean you can ignore other security measures,
as the password is still transmitted unencrypted on the network, unless you
are using a secure protocol such as XML-RPCS.
It also does not protect the rest of the content of the database, which may
contain critical data. Appropriate security measures need to be implemented
by the system administrator in all areas, such as: protection of database
backups, system files, remote shell access, physical server access, etc.
Interation with LDAP authentication
+++++++++++++++++++++++++++++++++++
This module is currently not compatible with the ``user_ldap`` module and
will disable LDAP authentication completely if installed at the same time.
Note: installing this module does not mean you can ignore basic security measures,
as the password is still transmitted unencrypted on the network (by the client),
unless you are using a secure protocol such as XML-RPCS.
""",
"depends" : ["base"],
"data" : [],