This is a static dump of issues in the old "Flyspray" bugtracker for DokuWiki. Bugs and feature requests
are now tracked at the issue tracker at Github.
FS#1278 proxy password storen in PLAIN text
when using a proxy which requires a password the password is stored in PLAIN text in __$conf['proxy']['pass'] = 'secretpassword';__ in the local.php.
The password should be stored as a hash value or another more safe option.
The password has to be used in clear text for proxy authentication it can not be stored as a one way hash. Using two way encryption is senseless because we would need to store the key for the encryption in clear text. This is not fixable. If you use your proxy pass in the setup you have to protect the config file from prying eyes.