#20079: Improve security of password reset tokens
-------------------------------------+-------------------------------------
Reporter: jacob | Owner: viciu
Type: Bug | Status: assigned
Component: contrib.auth | Version: master
Severity: Normal | Resolution:
Keywords: dceu13 | Triage Stage: Ready for
Has patch: 1 | checkin
Needs tests: 0 | Needs documentation: 0
Easy pickings: 0 | Patch needs improvement: 0
| UI/UX: 0
-------------------------------------+-------------------------------------
Changes (by erikr):
* needs_better_patch: 1 => 0
* stage: Accepted => Ready for checkin
Comment:
The patch looks good to me. The test has a minor chance of a hash
collision one day, but as the two random strings are 40 characters, this
will probably never happen in our lifetime.
--
Ticket URL: <https://code.djangoproject.com/ticket/20079#comment:7>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-updates+unsubscr...@googlegroups.com.
To post to this group, send email to django-updates@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
