Password Encryption for OpenERP 7

Question

Are passwords now encrypted by default in version 7?

I have read many places that a mod needs to be installed for the passwords to be encrypted but they were for version 6.

If I need to install a mod, what is it called? I have only found "Password Encryption" but I think that is for email only?

Please advise, I am very new to OpenERP and want to make it secure.

Francesco OpenCode · Answer

Please, search before post new answer. This is a common question: https://accounts.openerp.com/forum/Help-1/question/6545 [1]

[1] https://accounts.openerp.com/forum/Help-1/question/6545

Lorenzo Cabrini · Answer

Just checked with my 7.0 installation and the passwords are not encrypted. However, I wonder what security problem you are worried about? Encrypted passwords in the database only mean that somebody who connects directly to your db, or who gets access to a database dump can't see the user passwords (which is of course a good thing in itself). Access to the database and its dumps should be restricted as there is far more than just user passwords that is potentially sensitive information in an ERP. Password encryption does not increase the security of the application in any way.

If you are worried about the general security of OpenERP that are other more important things to be concerned about, such only allowing connections to your OpenERP server using SSL.

Powiązane posty	Odpowiedzi	Widoki
How to enable password reset in the login screen Rozwiązane password v7	2 lut 21	18066
How can I get Firefox to remember my OpenERP password ? password v7	2 mar 15	4429
Set password at the time of user creation? Rozwiązane password v7 change	1 kwi 24	27717
How to add a "Delete" button on the popup form? Rozwiązane v7	1 paź 25	5596
Minimum Lot Charge For Sales Order Line Items v7	0 gru 24	10514

To pytanie dostało ostrzeżenie

Podoba Ci się ta dyskusja? Dołącz do niej!