[aur-dev] FS#17109: AUR passwords are not salted

Denis Kobozev d.v.kobozev at gmail.com
Fri Jun 25 14:36:45 EDT 2010

On Fri, Jun 25, 2010 at 2:25 PM, Linas <linas_fi at ymail.com> wrote:
> Denis Kobozev wrote:
>>> The query in addsalt() function should have a WHERE Salt IS NULL. That's
>>> nicer than checking it in php.
>> Is it faster/more memory efficient/more readable?
> If some rows were done and others don't (eg. you want to do it in batches),
> then it makes a different since filtering client side means retrieving
> each and
> every user, sending it over the net and then discard it whereas
> filtering on the
> db only the relevant rows are sent.

That's assuming the host running the script and the host running MySQL
are different machines? I realize it's not really important for this
script, but it's definitely useful information.


More information about the aur-dev mailing list