note more prominently that SHA and crypt are insecure

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1352910 13f79535-47bb-0310-9956-ffa450edef68
author: Stefan Fritsch <sf@apache.org> 2012-06-22 16:56:44 +0200
committer: Stefan Fritsch <sf@apache.org> 2012-06-22 16:56:44 +0200
commit: 6367f6a183073783ed085e4e3eea4ccd08966e61 (patch)
tree: 3cadbf4bfcf057839dc71379b1d86203ccd821ec /support/htpasswd.c
parent: improve dump_allocator, add dump_one_pool (diff)
download: apache2-6367f6a183073783ed085e4e3eea4ccd08966e61.tar.xz
apache2-6367f6a183073783ed085e4e3eea4ccd08966e61.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/support/htpasswd.c b/support/htpasswd.c
index 16e55a0630..993ce625e3 100644
--- a/support/htpasswd.c
+++ b/support/htpasswd.c
@@ -283,9 +283,10 @@ static void usage(void)
         " (default)"
         "." NL);
     apr_file_printf(errfile, " -d  Force CRYPT encryption of the password"
-            "." NL);
+            " (8 chars max, insecure)." NL);
     apr_file_printf(errfile, " -p  Do not encrypt the password (plaintext)." NL);
-    apr_file_printf(errfile, " -s  Force SHA encryption of the password." NL);
+    apr_file_printf(errfile, " -s  Force SHA encryption of the password"
+            " (insecure)." NL);
     apr_file_printf(errfile, " -b  Use the password from the command line "
             "rather than prompting for it." NL);
     apr_file_printf(errfile, " -D  Delete the specified user." NL);
author	Stefan Fritsch <sf@apache.org>	2012-06-22 16:56:44 +0200
committer	Stefan Fritsch <sf@apache.org>	2012-06-22 16:56:44 +0200
commit	6367f6a183073783ed085e4e3eea4ccd08966e61 (patch)
tree	3cadbf4bfcf057839dc71379b1d86203ccd821ec /support/htpasswd.c
parent	improve dump_allocator, add dump_one_pool (diff)
download	apache2-6367f6a183073783ed085e4e3eea4ccd08966e61.tar.xz apache2-6367f6a183073783ed085e4e3eea4ccd08966e61.zip