Sunil Mohan Adapa 1faee11d4d

django: Use Argon2 password hash ...

Passwords will be automatically upgraded for each user on login.

Usernames not yet upgraded are vulnerable to user enumeration attack due to
difference in password check timing.

No need to add build dependency on python3-argon2 because tests use a different
Django configuration which does not use argon2 hash.

Reviewed-by: James Valleroy <jvalleroy@mailbox.org>

2019-01-13 14:46:15 -05:00

..

po

debian: Add Russian translation of debconf template

2018-10-14 15:04:19 -04:00

source

debian: Fix spelling errors in lintian override comment

2019-01-04 23:05:35 -05:00

changelog

Release v0.46.1 to unstable

2019-01-04 23:18:08 -05:00

compat

debian: Bump debhelper compat version to 11

2018-04-09 19:04:35 +05:30

control

django: Use Argon2 password hash

2019-01-13 14:46:15 -05:00

copyright

debian: Use https for copyright format url

2018-04-09 19:05:13 +05:30

freedombox.doc-base

debian: Rename plinth package to freedombox

2018-12-31 15:59:08 -05:00

freedombox.docs

debian: Rename plinth package to freedombox

2018-12-31 15:59:08 -05:00

freedombox.lintian-overrides

debian: Rename plinth package to freedombox

2018-12-31 15:59:08 -05:00

freedombox.maintscript

debian: Rename plinth package to freedombox

2018-12-31 15:59:08 -05:00

manpages

debian: Switch to native package

2017-11-03 18:30:35 +05:30

postinst

debian: Don't change ownership recursively in postinst

2018-12-31 15:58:57 -05:00

postrm

logging: Remove references to old log files

2018-12-30 13:45:23 -05:00

rules

debian: Rename plinth package to freedombox

2018-12-31 15:59:08 -05:00

templates

firstboot: Add debconf translations for wizard secret dialog

2018-07-04 20:22:59 -04:00

TODO.Debian

debian: Switch to native package

2017-11-03 18:30:35 +05:30