Hash password in $ONE_AUTH file
|Target version:||Release 2.0|
Password are stored in plain text in the $ONE_AUTH file. This file is protected through the standard UNIX file permission mechanism. However, as proposed by Shi Jin in the mailing list, a hashed password makes it a lot harder for somebody to remember the password with a quick glimpse of the file.
#1 Updated by Jeroen Nijhof over 10 years ago
Why not using the sha1 encrypted string?
The only thing you need then is a user command to generate the sha1 string which can be used in your ONE_AUTH file. Something like 'oneuser gensha1 <password>' the output sha1 string can then be used in your ONE_AUTH file like 'username:<generated sha1 string>'.