[pmwiki-users] PmWIki AuthUser passwords stored in clear in PHP session files

Christophe David pmwiki at christophedavid.org
Wed Oct 10 12:03:30 CDT 2007


> Maybe I just don't understand the problem, but if you use a secure
> authentication method other than the built-in PmWiki passwords, I can't
> see how PHP or PmWiki can know the password.

I use PmWiki AuthUser, but with the passwords stored on a LDAP server
instead of on the page SiteAdmin.Authuser.

Christophe



More information about the pmwiki-users mailing list