[TYPO3-dev] typo3.org login
Dmitry Dulepov
dmitry.dulepov at gmail.com
Wed Nov 19 09:11:13 CET 2008
Hi!
Peter Russ wrote:
> If I see how this issue is handled here, I would not bet on that!
I do not think you can see it :)
> Further I'm in doubt that this will be fixed in just a few days. If that
> would be that easy why wasn't it be done before as many claimed the
> plain passwords are a problem? Is 4.2.x already "stable"? SCNR.
Do you have information that makes you think it cannot be fixed in
the nearest few days? I do not think you do. So your doubts are not
based on anything.
Plain passwords are not the problem. This is typical
misunderstanding from people, who are not deep into security. If you
hide clear text passwords behind a good secure access system, it is
neither a problem, nor a threat. In case of typo3.org the intruder
could never steal passwords if he did not have BE access.
4.2 is stable since the release of TYPO3 4.2.0.
--
Dmitry Dulepov
TYPO3 translations support
My TYPO3 book: http://www.packtpub.com/typo3-extension-development/book
In the blog: http://typo3bloke.net/post-details/ghosts_in_typo3/
More information about the TYPO3-dev
mailing list