OpenCms encrypts passwords using the “scrypt” method. This means that even after a so-called “data leak,” user passwords cannot usually be decrypted.
However, if the OpenCms installation is potentially affected by a “data leak,” it is still recommended to reset all user passwords.
Note: Resetting the passwords of all users can only be triggered by OpenCms Administration in consultation with Alkacon.