On Wednesday January 28, 2009 16:40:53 Mark Ramm wrote:
> It's lossible that we
> could simplify it bit, but it works.
Why don't we just drop the ability to select the hashing algorithm and use
salted SHA1 by default? It won't break existing applications.
To be honest, I don't that feature:
* It's not as simple as it should to be able to use the model outside of TG.
* The available alternatives, SHA1 and MD5, are not very reliable:
reliability(salted_sha1) > reliability(sha1) > reliability(md5)
* This is not about encrypting, but about hashing.
Cheers.
--
Gustavo Narea <http://gustavonarea.net/>.
Get rid of unethical constraints! Get freedomware:
http://www.getgnulinux.org/
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"TurboGears Trunk" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/turbogears-trunk?hl=en
-~----------~----~----~----~------~----~------~--~---
