[Python-checkins] peps: PEP 466: tweak wording of os.urandom() rationale
nick.coghlan
python-checkins at python.org
Mon May 12 12:56:00 CEST 2014
http://hg.python.org/peps/rev/7d8fa3101fb8
changeset: 5474:7d8fa3101fb8
user: Nick Coghlan <ncoghlan at gmail.com>
date: Mon May 12 20:55:52 2014 +1000
summary:
PEP 466: tweak wording of os.urandom() rationale
files:
pep-0466.txt | 12 +++++++-----
1 files changed, 7 insertions(+), 5 deletions(-)
diff --git a/pep-0466.txt b/pep-0466.txt
--- a/pep-0466.txt
+++ b/pep-0466.txt
@@ -356,11 +356,13 @@
help lower the barriers to secure password storage and checking in Python 2
server applications.
-The os.urandom change has been included in this proposal to help encourage
-users to leave the task of providing high quality random numbers for
-cryptographic use case to operating system vendors (as this is a genuinely
-hard problem, and operating system developers have more tools available to
-deal with it than Python application runtimes)
+The ``os.urandom()`` change has been included in this proposal to further
+encourage users to leave the task of providing high quality random numbers
+for cryptographic use cases to operating system vendors. The use of
+insufficiently random numbers has the potential to compromise *any*
+cryptographic system, and operating system developers have more tools
+available to address that problem adequately than the typical Python
+application runtime.
Rejected alternative: just advise developers to migrate to Python 3
--
Repository URL: http://hg.python.org/peps
More information about the Python-checkins
mailing list