[Python-ideas] Add adaptive-load salt-mandatory hashing functions? (original) (raw)
Barry Warsaw barry at python.org
Wed Jun 20 21:06:08 CEST 2012
- Previous message: [Python-ideas] Add adaptive-load salt-mandatory hashing functions?
- Next message: [Python-ideas] Add adaptive-load salt-mandatory hashing functions?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Jun 15, 2012, at 07:07 PM, Eli Collins wrote:
The reason I see a need for such a function is that all existing password hashing libraries (passlib, cryptacular, flufl.password, django.contrib.auth.hashers, etc) have had to roll their own pure-python pbkdf2 implementations, to varying degrees of speed. And speed is paramount for pbkdf2 usage, since security depends on squeezing as many rounds / second out of the implementation as possible.
To be honest, if I'd known about passlib I probably would never have written flufl.password. Extra +1 goodness for passlib's Python 3 support!
I'm going to migrate my own applications to passlib and if that goes well, I'll start the process of deprecating flufl.password.
Cheers, -Barry -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: <http://mail.python.org/pipermail/python-ideas/attachments/20120620/300c449d/attachment.pgp>
- Previous message: [Python-ideas] Add adaptive-load salt-mandatory hashing functions?
- Next message: [Python-ideas] Add adaptive-load salt-mandatory hashing functions?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]