code review

Ian Kelly ian.g.kelly at gmail.com
Tue Jul 3 20:27:05 CEST 2012


On Tue, Jul 3, 2012 at 12:18 PM, John Gordon <gordon at panix.com> wrote:
> In <mailman.1753.1341338042.4697.python-list at python.org> Kushal Kumaran <kushal.kumaran+python at gmail.com> writes:
>
>> I haven't actually seen the rest of the code, but I would like to
>> point out that applications placing maximum length limits on passwords
>> are extremely annoying.
>
> As a practical matter, doesn't there have to be *some* sort of limit?
> For example if the (encrypted) password is stored in a database, you can't
> exceed the table column width.

Hopefully you're storing password hashes, not encrypted passwords
(which can all too easily be DEcrypted), and the length of the hash is
not dependent on the length of the password.  But yes, there are
certainly practical concerns here.



More information about the Python-list mailing list