On Sun, Apr 11, 2010 at 1:08 PM, Evan Carroll <[email protected]> wrote:
> On Sun, Apr 11, 2010 at 12:31 AM, Andrew Rodland > <[email protected]> wrote: > > Please, make some more public insults. > > > snip. Guys, just fix or don't fix the broken or not broken problem and stop the crappy-crap-crap line noise. IMHO, with 19 years of experiance under my belt, "hashed passowrds" use a plaintext random salt pre or post concat (usually pre, so it is an easy and cheap index) with hash as a standard and has been well before sha or md5 (think lessons learned before crypt). In my mind, if that is not the default behavior anytime you expose the word "hashed" along with "password" there had better be a very loud callout in docs. I don't know what the fix is -- it seems like doc or code would work. -Wade > With love, > > -- > Evan Carroll >
_______________________________________________ List: [email protected] Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[email protected]/ Dev site: http://dev.catalyst.perl.org/
