Re: Looking for a security/encryption programmer for small contract
i'll be honest, i don't know anyone who's ever used a one-time-pad outside of some military applications before we had computers everywhere. while the security is mathematically "perfect", it's so encumbering to implement that i consider it overall riskier. having to pass by courier gigs upon gigs of true-random numbers, plus the need to securely destroy that data afterwards, is really hard. many more vectors of attack at the human level. best to make damn sure your 192-bit AES key gets there in a trustworthy manner, and trust in the combined research of the professional cryptographic community. derek Tim Chase wrote: - Take a message, encrypt it using a secure method (should be better or equal than OTP), return the encrypted message. >> > >>> parties, Blowfish and DES3 are popular choices and likely to be >> just a point of fact: neither of these are >= to OTP. > > They're all strong cryptographically, but all shared-secret > solutions suffer the same fate of having to figure out how to > securely share your key/OTP if you aren't both the sender and the > recipient. > > I do like OTP for logins over insecure connections if absolutely > needed, but otherwise, I don't see non-public-key as a great win :) > >> also, on a side note, i wouldn't use 3DES for any new implementations. > [snip] >> i'd highly recommend AES instead. > > Good point...I remember hearing something about that a while > back, but I tend to use public-key for just about everything so > it didn't register in my active memory. > > -tim > > > > > > > -- looking to buy or sell anything? try: http://allurstuff.com it's a classified ads service that shows on a map where the seller is (think craigslist + google maps) plus it's 100% free :) --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~--~~~~--~~--~--~---
Re: Looking for a security/encryption programmer for small contract
Tim Chase wrote: >> What's need to be done : >> - Take a message, encrypt it using a secure method (should be better >> or equal than OTP), return the encrypted message. > > parties, Blowfish and DES3 are popular choices and likely to be just a point of fact: neither of these are >= to OTP. also, on a side note, i wouldn't use 3DES for any new implementations. while still largely impractical with today's computers, it is susceptible to meet-in-the-middle attacks, which makes it only slightly better than regular DES, which despite its long and glorious history is not a secure standard anymore. plus it's inferior in virtually every way to AES. i'd highly recommend AES instead. derek -- looking to buy or sell anything? try: http://allurstuff.com it's a classified ads service that shows on a map where the seller is (think craigslist + google maps) plus it's 100% free :) --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~--~~~~--~~--~--~---
Re: django for non-web apps
well it's a desktop app, so i don't use any authentication. but my guess is you can prompt at the command line, and use most of django's auth system. dlc wrote: > How does authentication work? > > I want to build apps with both web and CLI interfaces, with nearly > 100% overlap in functionality between the two interfaces. I'm a CLI > snob but I also need GUI to "sell" my projects to the rest of the > team. > > > > On Jan 21, 12:12 am, Derek Anderson <[EMAIL PROTECTED]> wrote: >> hey all, >> >> i'm prob. not the first to do this, but i don't know of anyone else who >> has so i thought i'd mention it. >> >> i've used django's database and ORM layers as the backend to a new pygtk >> app. (all over a sqlite db) it has worked wonders and allowed me to >> focus my time on the UI, not writing reams of file parsing code. i >> recommend anyone else starting a new app to consider it. >> >> the app itself is prob. of limited audience. (it's an itunes-like >> management app for research papers) if you're working on a phd you >> might want to give it a whirl, but otherwise i expect your reaction to >> be like "yeah, neat, but, wtf?" :) >> >> anyway, link:http://gpapers.org/ >> >> ttyl, >> derek >> >> -- >> looking to buy or sell anything? >> >> try:http://allurstuff.com >> >> it's a classified ads service that >> shows on a map where the seller is >> (think craigslist + google maps) >> >> plus it's 100% free :) > > > -- looking to buy or sell anything? try: http://allurstuff.com it's a classified ads service that shows on a map where the seller is (think craigslist + google maps) plus it's 100% free :) --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~--~~~~--~~--~--~---
Re: Simple markup language?
Jeff Anderson wrote: > And you just need minimal functionality, > You could probable write up a small hack to do it with some regular > expressions. You can find things that strip html, and then you could to > the simple markup fairly easily after that. It shouldn't take too long > to write something like that. i recommend against this. too easy to miss corner-cases, allowing inputs like "