Hi there,
Shane Hathaway wrote:
Uli Fouquet wrote:
Shane Hathaway wrote:
http://svn.zope.org/Zope/trunk/lib/python/AccessControl/AuthEncoding.py?rev=94737view=markup
Is there some recent documentation about SSHA available? The netscape
links seems to be down.
I'm not sure where to
Tres Seaver wrote:
Zope Tests Summarizer wrote:
Summary of messages to the zope-tests list.
Period Mon Jan 19 12:00:00 2009 UTC to Tue Jan 20 12:00:00 2009 UTC.
There were 8 messages: 8 from Zope Tests.
Test failures
-
Subject: FAILED (failures=2) : Zope[2.buildout]-trunk
Shane Hathaway wrote:
[snip]
Also, every encrypted password should have a scheme name prefix in curly
braces, such as {SSHA}, as discussed earlier in this thread. That
makes it possible to support multiple schemes in a single database,
which is essential for migration to new schemes.
+1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi there,
based on an earlier Zope 2.12 thread
http://mail.zope.org/pipermail/zope-dev/2008-October/033572.html
I propose that we get out an alpha version of Zope 2.12 by end
of February.
Hi there,
thanks for all input so far :-)
Martijn Faassen wrote:
Shane Hathaway wrote:
[snip]
Also, every encrypted password should have a scheme name prefix in curly
braces, such as {SSHA}, as discussed earlier in this thread. That
makes it possible to support multiple schemes in a
On Wednesday 21 January 2009, Andreas Jung wrote:
- RestrictedPython security audit: such an audit has been made
by Stefan and Sidnei. I am not qualified to speak about the
correctness of the audit. I assume they know what they were
doing. Unless objections one might consider this issue
Uli Fouquet wrote:
Ok. I'll put something into the zope.app.authentication branches for
review.
Great!
Two remaining questions: I would like to use `os.urandom` instead of
`random.randint` to create the salt, because this is recommended in
cryptographic contexts. There was, however, a
Uli Fouquet wrote:
Do we need a SMD5-manager as well (same as SSHA, only with MD5 instead
of SHA1 as hash algorithm)?
I doubt it.
Any reviews by the more competent gurus in the list are highly
appreciated.
Your implementation and docs look fine to me. The only comment I have
is I wonder
Hi Martijn
Betreff: Re: [Zope-dev] zope.globalrequest?
Hi there,
Roger Ineichen wrote:
[snip]
Why should someone use a global request if he has a request
available?
This package does nothing else then offer a request if non is
available. And if you need a request if non is
