Client side encryption of user password #4080
Labels
c: Security
For issues that make Matomo more secure. Please report issues through HackerOne and not in Github.
Task
Indicates an issue is neither a feature nor a bug and it's purely a "technical" change.
wontfix
If you can reproduce this issue, please reopen the issue or create a new one describing it.
We could encrypt the password, after it has been submitted in the login form, so that the password is not sent in the clear.
eg. http://code.google.com/p/crypto-js/#Quick-start_Guide
The text was updated successfully, but these errors were encountered: