For whatever that follows thinking about using MD5 or SHA-1 on its applications, please read this article:
http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/ This article speaks too about bcrypt, designed to replace traditional password hashing algorithms by the OpenBSD group. It manages salt generation automatically and allows for user configurable levels of algorithm complexity, allowing the algorithm to grow in complexity to match growth in CPU speeds. Here's the python wrapper: http://www.mindrot.org/projects/py-bcrypt/ --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears Trunk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears-trunk?hl=en -~----------~----~----~----~------~----~------~--~---
