[Catalog-sig] Pull request to migrate PyPI to bcrypt
Giovanni Bajo
rasky at develer.com
Mon Feb 11 14:01:49 CET 2013
Il giorno 11/feb/2013, alle ore 13:25, Jesse Noller <jnoller at gmail.com> ha scritto:
> Actually I was thinking about this in the shower: the likelihood that pypi users used the same passwords as they did on the wiki is probably much higher than any of us assume.
Given that the passwords were unsalted in both instances, a set intersection is enough to verify.
--
Giovanni Bajo :: rasky at develer.com
Develer S.r.l. :: http://www.develer.com
My Blog: http://giovanni.bajo.it
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4346 bytes
Desc: not available
URL: <http://mail.python.org/pipermail/catalog-sig/attachments/20130211/98702855/attachment.bin>
More information about the Catalog-SIG
mailing list