[Catalog-sig] Pull request to migrate PyPI to bcrypt
Daniel Holth
dholth at gmail.com
Mon Feb 11 16:34:35 CET 2013
On Mon, Feb 11, 2013 at 10:20 AM, M.-A. Lemburg <mal at egenix.com> wrote:
> On 11.02.2013 14:49, Christian Heimes wrote:
> > Am 11.02.2013 14:38, schrieb Donald Stufft:
> >> On Monday, February 11, 2013 at 8:15 AM, M.-A. Lemburg wrote:
> >>> Giovanni Bajo wrote:
> >>>> Il giorno 11/feb/2013, alle ore 13:25, Jesse Noller
> >>>> <jnoller at gmail.com <mailto:jnoller at gmail.com>> ha scritto:
> >>>>
> >>>>> Actually I was thinking about this in the shower: the likelihood
> >>>>> that pypi users used the same passwords as they did on the wiki is
> >>>>> probably much higher than any of us assume.
> >>>>
> >>>> Given that the passwords were unsalted in both instances, a set
> >>>> intersection is enough to verify.
> >>>
> >>> The moin wiki passwords were salted.
> >>>
> >>> The reason we reset the passwords, was that the attackers had
> >>> access to both the salt and the hashes.
> >>>
> >> What were they hashed with? Even with a salt a fast hash is trivial to
> >> bruteforce for a large number of passwords in practically no time
> >> with trivial hardware.
> >
> > It uses SSHA, that's sha1(password + salt) with a seven char salt.
>
> Right, should have added that information.
>
> BTW: I wonder why salt and password are usually stored together
> in the same place. The moin implementation also did not add any
> application salt to the password string before calculating the
> hash value (ie. x = hash(random_salt + application_salt + password)).
> Not sure whether passlib does, either.
>
The salt, which should be random and unique for every user, is only there
to obsolete precomputation attacks and to make sure two users will not have
the same password hash even if they choose the same password. It is not a
secret.
IMO "per-application salt" should be called "hash function customization".
I don't think it buys you much over normal per-password salts.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/catalog-sig/attachments/20130211/7f3d3b1e/attachment.html>
More information about the Catalog-SIG
mailing list