Mercurial > p > roundup > code
diff doc/upgrading.txt @ 7203:12a3cd86668f
auto update 'password_pbkdf2_default_rounds' "
If the current value for password_pbkdf2_default_rounds is the old
default value of 10000, updateconfig will use the new default
value when writing the new config.
If the curreny value for password_pbkdf2_default_rounds is less than
the new default the user will be told to update the value.
New translation strings added. Updates to upgrading.txt doc.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Wed, 01 Mar 2023 10:51:37 -0500 |
| parents | 1549c7e74ef8 |
| children | c1227f883177 |
line wrap: on
line diff
--- a/doc/upgrading.txt Wed Mar 01 10:43:54 2023 -0500 +++ b/doc/upgrading.txt Wed Mar 01 10:51:37 2023 -0500 @@ -66,6 +66,9 @@ ``config.ini`` to ``newconfig.ini`` and replace ``config.ini`` with ``newconfig.ini``. +``updateconfig`` will tell you if it is changing old default +values or if a value must be changed manually. + Using the roundup-mailgw script (required) ------------------------------------------ @@ -191,6 +194,11 @@ million). This exceeds the current `recommended setting of 1,300,000`_ for PBKDF2 when used with SHA1. +If you were using the old 10000 value, it will be automatically +upgraded to 2 million by using ``roundup-admin``'s +``updateconfig``. If you were not using the old 10000 default, +you should update it manually. + After the change users will still be able to log in using the older 10000 round hashed passwords. If ``migrate_passwords`` is set to ``yes``, passwords will be automatically re-hashed using