What does 'redacts password' mean?

3

In the InfluxDB documentation, I found the following note:

  

Note: InfluxDB write passwords when you enable authentication.

Source: link

    
asked by anonymous 01.07.2016 / 18:38

1 answer

1

I recommend using this link so that user is automatically taken to the question session.

As far as I know, redacts means "censorship" or "hide" in the present indicative, this would be necessary if for example the database was publicly displayed, or to assure users of the fact that the person with access to the database of data can not know your password, which could be used for malicious purposes in a scenario where the user uses the same password for various services.

It would still be more advisable for the database to use a hashing system of passwords, where the password that is sent by the person goes through a process where it is made into another character string, if the string that if formed is the same on the site, the user is guaranteed access to the service, with this mechanism an administrator of a site does not know his password, but he needs to have the ethical sense to implement the same.

A hashing process can only work in a way, with a series of fixed processes, otherwise this is an encryption process , an encryption needs to be implemented with at least two elements - usually the content to be passed and a "key."

User cantoni pointed out something important: the hashing process must be irreversible in conventional ways, otherwise it would also be possible for a person with access to the database to retrieve information from users even though it has never been hosted on the server.

    
01.07.2016 / 19:26