Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request: User Management Enhancements
Summary
This pull request introduces the following changes:
.venv
to.gitignore
to ignore virtual environments.sfusers.py
to manage users and passwords in the password file~/.spiderfoot/passwd
.sf.py
to use theusername:realm:ha1
format frompasswd
instead ofusername:password
.Commits
Commit ef2d608a1b76ff3dc3a133020d4329171997d664
Add
.venv
to.gitignore
This commit updates the
.gitignore
file to include.venv
directory commonly used for isolating python virtual environments. Ignoring this directory helps prevent unnecessary files from being tracked by Git.Commit 017a206fcdb5df37140fc1e4386190db596aea80
Update
sf.py
to useusername:realm:ha1
formatThis commit updates
sf.py
to read and process the~/.spiderfoot/passwd
file using theusername:realm:ha1
format instead of theusername:password
format. This change aligns with the more secure practice of storing hashed passwords.Commit d2ff0c8c2ba3db66de460167a941e762346ee0ba
Add
sfusers.py
for user managementThis commit introduces a new script,
sfusers.py
, to manage users and passwords in the~/.spiderfoot/passwd
file. This script provides functionalities to add, update, and delete users, as well as hash their passwords for secure storage.Conclusion
These changes collectively improve the security, maintainability, and usability of the project. Ignoring virtual environments prevents unnecessary files from cluttering the repository. Introducing
sfusers.py
provides a centralized and secure method for managing user credentials. Updatingsf.py
to use hashed passwords enhances security and aligns with best practices such as secure by design.All changes have been tested for functionality in a virtual environment