| |||||||||||||
ownCloud 4 releasedownCloud 4 releasedPosted May 22, 2012 20:04 UTC (Tue) by aggelos (subscriber, #41752)In reply to: ownCloud 4 released by ledow Parent article: ownCloud 4 released
No, the password is hashed (they use http://www.openwall.com/phpass/, which transparently generates a salt and stores it along w/ the hash).
Like you though, I still don't see what this toy encryption (there are other problems too) has to offer, other than checking an Encryption [x] checkbox.
(Log in to post comments)
ownCloud 4 released Posted May 22, 2012 20:34 UTC (Tue) by AlexHudson (subscriber, #41828) [Link]
Presumably it's to go alongside the external storage options. It may not do much if someone hacks your owncloud, but it means you can trust your external storage isn't readable.
ownCloud 4 released Posted May 22, 2012 21:18 UTC (Tue) by aggelos (subscriber, #41752) [Link]
Not with this implementation you can't :/
ECB Posted May 23, 2012 6:47 UTC (Wed) by tialaramex (subscriber, #21167) [Link]
Looks like electronic codebook mode. AKA "I don't know what I'm doing" mode.
As Wikipeda handily illustrates with a picture of Tux, ECB doesn't do what you naively expect (because it can't) even when provided with a high quality block cipher primitive and a strong key.
There are a bunch of hard problems that ownCloud ought to want to solve. But solving already hard problems with PHP isn't going to happen, so they seem to have satisfied themselves with making it customisable, you can have the Wrong Thing™ in any flavour and colour scheme you like.
ownCloud 4 released Posted May 28, 2012 9:35 UTC (Mon) by jospoortvliet (subscriber, #33164) [Link]
why not? (i honestly want to know as i hoped to use this)
|
|||||||||||||