Opened 16 years ago

Closed 16 years ago

Last modified 13 years ago

#9101 closed (wontfix)

Improved salt generation for django.contrib.auth

Reported by: Ludvig Ericson Owned by: nobody
Component: contrib.auth Version: dev
Severity: Keywords:
Cc: Triage Stage: Accepted
Has patch: yes Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: no UI/UX: no

Description

Currently, the salts generated by the auth framework are pretty weak.

This patch changes the behavior of doing a SHA1 hash of digits into choosing five random characters from the lower and upper alphabet, as well as any digit. [a-zA-Z0-9]

See the django-dev this: http://tinyurl.com/5tjvhc

Attachments (2)

django-salts.diff (859 bytes ) - added by Ludvig Ericson 16 years ago.
9101.diff (1014 bytes ) - added by Matt Boersma 16 years ago.
Updated patch to use string.punctuation as well

Download all attachments as: .zip

Change History (9)

by Ludvig Ericson, 16 years ago

Attachment: django-salts.diff added

comment:1 by Jacob, 16 years ago

milestone: 1.1
Triage Stage: UnreviewedAccepted

comment:2 by anonymous, 16 years ago

You can also add string.punctuation to the SALT_CHARS soup.

by Matt Boersma, 16 years ago

Attachment: 9101.diff added

Updated patch to use string.punctuation as well

comment:3 by Matt Boersma, 16 years ago

Tested on sqlite, PostGres, and Oracle.

comment:4 by Ludvig Ericson, 16 years ago

Regarding the latest patch, why import the name each time the function is run? I mean no, it's probably not going to be noticeable WRT the function's purpose, but I'm curious.

comment:5 by Matt Boersma, 16 years ago

I was just following the example of the existing code, which imported the module inside the function. Elsewhere in the same module there's a similar import of random within another function, so I assumed there was some benefit to delaying the import until it's needed, since Django does this in many places.

I personally don't do late imports, but this style seemed to fit the module better. But really, it probably doesn't matter either way.

comment:6 by Jacob, 16 years ago

Resolution: wontfix
Status: newclosed

This really isn't a change with any value; salt doesn't need to be particularly cryptographically strong as long as it's random enough; the point is to exponentially increase the search space for password crackers. The current code is fine.

comment:7 by Jacob, 13 years ago

milestone: 1.1

Milestone 1.1 deleted

Note: See TracTickets for help on using tickets.
Back to Top