[Python-Dev] Hash collision security issue (now public)
timothy.c.delaney at gmail.com
Fri Dec 30 01:55:45 CET 2011
On 30 December 2011 06:59, Tim Delaney <timothy.c.delaney at gmail.com> wrote:
> +0 to exposing the salt as a constant (3.3+ only) - or alternatively
> expose a hash function that just takes an existing hash and returns the
> salted hash. That would make it very easy for anything that wanted a salted
> hash to get one.
Sorry - brain fart on my part there - the salt needs to be included right
from the start.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Python-Dev