[Python-ideas] Add adaptive-load salt-mandatory hashing functions?
Barry Warsaw
barry at python.org
Wed Jun 20 21:06:08 CEST 2012
On Jun 15, 2012, at 07:07 PM, Eli Collins wrote:
>The reason I see a need for such a function is that all existing password
>hashing libraries (passlib, cryptacular, flufl.password,
>django.contrib.auth.hashers, etc) have had to roll their own pure-python
>pbkdf2 implementations, to varying degrees of speed. And speed is paramount
>for pbkdf2 usage, since security depends on squeezing as many rounds / second
>out of the implementation as possible.
To be honest, if I'd known about passlib I probably would never have written
flufl.password. Extra +1 goodness for passlib's Python 3 support!
I'm going to migrate my own applications to passlib and if that goes well,
I'll start the process of deprecating flufl.password.
Cheers,
-Barry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://mail.python.org/pipermail/python-ideas/attachments/20120620/300c449d/attachment.pgp>
More information about the Python-ideas
mailing list