is it possible to encrypt the user (and admin) passwords in the database? I’'m using currently the embedded database but this problem should occur with every database. LDAP authentication could be an option to get around this problem if one has an ldap server and wants to use it.
I personally do not want to deploy a product which stores passwords as plain text and some security regulations reject using such products.