summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorStephen Gallagher <sgallagh@redhat.com>2011-09-08 15:04:32 -0400
committerStephen Gallagher <sgallagh@redhat.com>2011-09-20 10:43:11 -0400
commitc6fbe644aec3f174e25e789d08a337085917bd31 (patch)
tree413bc1a3fd1756266a2823bcb17ff5a13bfcc05c
parentfc9ee636d63e58db4c05109ad6045add234c9f1f (diff)
downloadsssd-c6fbe644aec3f174e25e789d08a337085917bd31.tar.gz
sssd-c6fbe644aec3f174e25e789d08a337085917bd31.tar.xz
sssd-c6fbe644aec3f174e25e789d08a337085917bd31.zip
MAN: Add more information about internal credential storage
-rw-r--r--src/man/sssd-krb5.5.xml5
-rw-r--r--src/man/sssd.conf.5.xml4
2 files changed, 8 insertions, 1 deletions
diff --git a/src/man/sssd-krb5.5.xml b/src/man/sssd-krb5.5.xml
index 04523c06e..529bf24f8 100644
--- a/src/man/sssd-krb5.5.xml
+++ b/src/man/sssd-krb5.5.xml
@@ -260,7 +260,10 @@
</para>
<para>
Please note that this feature currently only
- available on a Linux platform.
+ available on a Linux platform. Passwords stored in
+ this way are kept in plaintext in the kernel
+ keyring and are potentially accessible by the root
+ user (with difficulty).
</para>
<para>
Default: false
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index dd80901c2..b8f220473 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -699,6 +699,10 @@
in the local LDB cache
</para>
<para>
+ User credentials are stored in a SHA512 hash, not
+ in plaintext
+ </para>
+ <para>
Default: FALSE
</para>
</listitem>