Improved salt generation for django.contrib.auth
|Reported by:||Ludvig Ericson||Owned by:||nobody|
|Has patch:||yes||Needs documentation:||no|
|Needs tests:||no||Patch needs improvement:||no|
Currently, the salts generated by the auth framework are pretty weak.
This patch changes the behavior of doing a SHA1 hash of digits into choosing five random characters from the lower and upper alphabet, as well as any digit.
See the django-dev this: http://tinyurl.com/5tjvhc
Change History (9)
comment:1 Changed 8 years ago by
|Patch needs improvement:||unset|
|Triage Stage:||Unreviewed → Accepted|