Alexander Kurtz <kurtz.a...@googlemail.com> wrote: Hi,
>> 4. is wrong on the permissions, correct on the plaintext password. > You are right. But I still think that a hashed pw would be _better_. Just forgot to mention one reason why this might not be doable: there's support for a password on the music library, hence you have to take into account what the clients support. You can fully expect that some clients won't support anything besides basic auth, and their HTTP implementation won't handle anything else properly so even downgrading to basic auth in a subsequent attempt won't work. JB. -- Julien BLACHE - Debian & GNU/Linux Developer - <jbla...@debian.org> Public key available on <http://www.jblache.org> - KeyID: F5D6 5169 GPG Fingerprint : 935A 79F1 C8B3 3521 FD62 7CC7 CD61 4FD7 F5D6 5169 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
