From db3f9050d6f4a098b82ae014a6a6e5e96a3067f6 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Mon, 15 Dec 2014 12:00:16 -0400 Subject: comment --- config-joey.hs | 5 +---- .../comment_8_311b80b491ecd018c73631044450294a._comment | 13 +++++++++++++ 2 files changed, 14 insertions(+), 4 deletions(-) create mode 100644 doc/security/comment_8_311b80b491ecd018c73631044450294a._comment diff --git a/config-joey.hs b/config-joey.hs index 4630622d..7aa94bb1 100644 --- a/config-joey.hs +++ b/config-joey.hs @@ -76,10 +76,7 @@ darkstar = host "darkstar.kitenet.net" & Apt.buildDep ["git-annex"] `period` Daily & Docker.configured ! Docker.docked gitAnnexAndroidDev - & website "foo" - - & User.accountFor "tester" - & User.hasSomePassword "tester" + ! website "foo" website :: String -> RevertableProperty website hn = Apache.siteEnabled hn apachecfg diff --git a/doc/security/comment_8_311b80b491ecd018c73631044450294a._comment b/doc/security/comment_8_311b80b491ecd018c73631044450294a._comment new file mode 100644 index 00000000..8382cf99 --- /dev/null +++ b/doc/security/comment_8_311b80b491ecd018c73631044450294a._comment @@ -0,0 +1,13 @@ +[[!comment format=mdwn + username="joey" + subject="""comment 8""" + date="2014-12-15T15:56:45Z" + content=""" +@Philipp, indeed: It's important to realize that all data entered into +the privdata with `propellor --set` is deployed in cleartext to the +machines that use it. Kept in a directory only root can read, but still, +important to bear in mind. + +I've added the ability to use `CryptPassword` instead of `Password` +to `User.hasPassword` and `User.hasSomePassword`. +"""]] -- cgit v1.2.3