![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
index cfb650690521ae13f4ae8103c60a79a58b863a52..f23c04c7726fd4b9d129d1fffff31ad569f7671a 100644 (file)
that stores information somewhere around) to read the gosa.conf file, which
may contain vital information about your LDAP service.
-To make it harder to extract these passwords, they get passed by request
-headers by default.
+To make it harder to extract these passwords, they get encrypted by a
+master password only readable by the GOsa location.
+
+You can simply migrate old existing passwords by typing:
+
+# a2enmod headers
+# gosa-encrypt-passwords
+# /etc/init.d/apache2 reload
If this is not enough for you (exploitable PHP code may make it possible to
read the webservers memory), you can simply create another webserver instance