mirror of
https://github.com/yacy/yacy_search_server.git
synced 2024-09-21 00:00:13 +02:00
0c754dd794
as BASIC were pwd is transmitted near clear text (B64enc). This has some implication as RFC 2617 requires and recommends a password hash MD5(user:realm:pwd) for DIGEST. !!! before activating DIGEST you have to reassign all passwords !!! to allow new calculation of the hash - default authentication is still BASIC - configuration at this time only manually in (DATA/settings) or defaults/web.xml (<auth-method> - the realmname is in defaults/yacy.init adminRealm=YaCy-AdminUI - fyi: the realmname is shown on login screen - changing the realm name invalidates all passwords - but for security you are encouraged to do so (as localhostadmin) - implemented to support both, old hashes for BASIC and new hashes for BASIC and DIGEST - to differentiate old / new hash the in Jetty used hash-prefix "MD5:" is used for new pwd-hashes ( "MD5:hash" ) |
||
|---|---|---|
| .. | ||
| cider | ||
| contentcontrol | ||
| cora | ||
| crawler | ||
| data | ||
| document | ||
| gui | ||
| http | ||
| interaction | ||
| kelondro | ||
| peers | ||
| repository | ||
| search | ||
| server | ||
| upnp | ||
| utils | ||
| visualization | ||
| dbtest.java | ||
| migration.java | ||
| yacy.java | ||
| YaCySearchClient.java | ||