Hi,
During some penetration testing, it was foud that an installation of cacti was vulnerable to having the passwords retrieved of accounts on the server!
Is this a known problem with 0.8.7e?
Is there a way to enable a form of one-way encryption to ensure that we don't get passwords compromised by an (illegitimate) third party?
Thanks
Cacti remote password retrieval security flaw?
Moderators: Developers, Moderators
-
evilzardoz
- Cacti User
- Posts: 55
- Joined: Sun Dec 04, 2005 10:59 pm
Who is online
Users browsing this forum: No registered users and 2 guests