#4151: Patch to add support for more secure password hashes in Python 2.5 or
newer
----------------------------------------------+-----------------------------
Reporter: Nick Efford <[EMAIL PROTECTED]> | Owner: nobody
Status: new | Component: Contrib
apps
Version: SVN | Resolution:
Keywords: authentication, password, hash | Stage: Design
decision needed
Has_patch: 1 | Needs_docs: 0
Needs_tests: 0 | Needs_better_patch: 1
----------------------------------------------+-----------------------------
Comment (by jacob):
I like the idea -- there's not reason for Django not to use the strongest
hashes available (mmmm... strong hash....). However, the setting is a bit
pointless -- there's no reason to use weak hashes if strong ones are
available.
So while I'm -1 on this patch, I'd be +0 on a patch that used SHA-256 if
{{{hashlib}}} is available, and fell back to SHA1 if not.
--
Ticket URL: <http://code.djangoproject.com/ticket/4151#comment:6>
Django Code <http://code.djangoproject.com/>
The web framework for perfectionists with deadlines
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
