[Vtigercrm-developers] Customer portal security issue
Hamono, Chris (DPC)
Chris.Hamono at sa.gov.au
Tue Jun 30 05:52:30 GMT 2015
User passwords are stored as plaintext in the database table vtiger_portalinfo
As users commonly reuse passwords it is not advisable to store the password in that fashion and should use the much more secure salted hash function used elsewhere in vtiger.
Chris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.vtigercrm.com/pipermail/vtigercrm-developers/attachments/20150630/b1a485b9/attachment.html>
More information about the vtigercrm-developers
mailing list