-
Notifications
You must be signed in to change notification settings - Fork 291
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use proper password hashing algorithm #514
Comments
None of https://paragonie.com/blog/2016/02/how-safely-store-password-in-2016 |
The main issue here is that if we hash the password in a different way, we can no longer use Digest authentication. Basic is an option, but it's even worse for those that are not on HTTPS yet (for whatever reason). If you want to know more about the current hashing approach, look no further than rfc7616. |
It actually has a chapter named A2 |
Yep, after digging a little deeper into the topic and reading the digest RFCs I decided to develop an alternative auth method which does not provide digest auth, but HMAC SHA512 encrypted passwords in database. Of course this will just make sense when you use TLS encryption. |
I think if we would do anything new, it would be bcrypt based. Seems to be the best choice these days ;) If you're interested in using that as well, I think the best place for a PR would be in the sabre/dav project. Then eventually it can make its way back into Baikal. |
You should just use |
I don't see the purpose of Digest authentication given that HTTPS is supposed to be used everywhere anyway? While I don't know anything about PHP, password_hash seems the way to go. On 23 March 2016 18:27:34 CET, Evert Pot [email protected] wrote:
Sent from my Android device with K-9 Mail. Please excuse my brevity. |
Well, HTTPS is not really everywhere yet. It would be nice to provide some protection for the people that don't have it. Although I can definitely see a future where we ditch Digest altogether. It also makes the server slow! |
If digest still need, just add configuration option: secure password hash (bcrypt or scrypt) without digest support or hash for digest support. But I doubt that DAV without https is popular in 2016. |
I agree, lets make it official:
|
Sensible plan although I would specifically use password_hash, which is not married to bcrypt and can automatically upgrade to stronger algorithms as they become available. |
A small thought: If you let the Web server do the authentication, then you can use all of, say, Apache's authentication methods, including TLS-SRP or client certificates. |
@muelli that's not a great solution for the average baikal user. It means that they need to understand apache configuration even more than they do already. It might be nice to have that as an option though. Definitely open a feature request if you want it. |
Yes. Deployment is less straight forward, because you cannot work with each and every Web server and their configuration. Especially because deploying PHP applications in a rather generic way seems to be an unsolved problem as of 2017. The benefit is, though, that the relatively complicated matter of authenticating users is someone else's responsibility. Not only has the "other party" probably more expertise in doing authentication (correctly), but you'd also get rid of code that does weird things like using MD5. FWIW: Apache typically allows configuration per directory. Baikal is deployed in a directory, so it could ship it's Apache configuration. |
General deployment may be an unsolved problem but your change isn't going to make it any easier. |
Thats what i was suggesting above. |
So, it's 2019 and you are really still using plain md5? Really? Not even salted? Also, not using a proper password hashing algorithm to support plaintext HTTP is a really lame excuse post Let's Encrypt. To be a little more constructive: |
@K-os feel free to provide a pull request to fix this low hanging fruits. This project was not maintained for a long time and recently a new maintainer has stepped up. Most of us are are aware that plain passwords are a bad idea. |
Ok, I'm sorry. I didn't know this project was unmaintained. I just saw the really recent release and didn't realize the previous release was more than two years old. |
@K-os no worries just provide a PR to fix this glitch and everyone is happy 😘 |
@K-os a different realm per user is not an option, because we have to send the realm before we know what the user id might be. Anyway, I do feel this warrants a follow-up, since it's a been a while since I replied here and I've since changed my mind. I now believe that the right more forward is to:
For a long while the trade-off was that we could either have (somewhat) safe passwords sent over plain text, or we could have good hashing and when I originally started sabre/dav in 2006, SSL certificates were not as available as they are right now. So yea, I no longer stand by what I said earlier. But the issue remains that for this to change, somebody has to pick up the work. Ideally, I think this work is done in the sabre-io/dav repo as a new, more secure authentication backend before added to Baikal. |
Yes, I know, but a different realm per installation would be possible. Using bcrypt with plaintext over https sounds like a good solution. |
Is this still an issue with the current version of baikal or is it fixed? |
Would be great to have a better password crypting method. Is there a description or something which provides more information about the authentication mechanism? Patching A1 is no problem, but I would like to understand A2, too (without digging TOO deep in code), to provide a patch for this. Thanks! :)
The text was updated successfully, but these errors were encountered: