delta/python-packages/passlib.git/docs/narr, branch stable foss.heptapod.net: python-libs/passlib quickstart.rst: grammar fixes 2019-01-12T09:32:29+00:00 Kenyon Ralph kenyon@kenyonralph.com 2019-01-12T09:32:29+00:00 0df31367f2def9cc87cb11cf7b35ba23f2d7bb3f 






Per issue 83, all "harden_verify" code is now deprecated & a noop.
2017-01-29T21:27:43+00:00

Eli Collins
elic@assurancetechnologies.com

2017-01-29T21:27:43+00:00

83d4c5b5237129e246536b7d686e7d79c4bc0fd2

will be removed completely in 1.8.

Rationale:
Aside from the arguments in issue 83, performed a timing analysis,
and decided harden_verify framework wasn't going to be easily workable
to prevent a timing attack anyways (see attached admin/plot_verify_timing.py script).

Changes:
* dummy_verify() has been kept around, but now uses .verify() against a dummy hash,
which is guaranteed to have correct timing (though wastes cpu cycles).

* Removed most harden_verify code, treating it as NOOP just like min_verify_time.
  Similarly, removed most documentation references to.





will be removed completely in 1.8.

Rationale:
Aside from the arguments in issue 83, performed a timing analysis,
and decided harden_verify framework wasn't going to be easily workable
to prevent a timing attack anyways (see attached admin/plot_verify_timing.py script).

Changes:
* dummy_verify() has been kept around, but now uses .verify() against a dummy hash,
which is guaranteed to have correct timing (though wastes cpu cycles).

* Removed most harden_verify code, treating it as NOOP just like min_verify_time.
  Similarly, removed most documentation references to.







Fix typo in quickstart
2017-01-10T22:03:25+00:00

PavloKapyshin
i@93z.org

2017-01-10T22:03:25+00:00

51f21eb091243fe4abf0915a4c391c548e24e9a9

(grafted from 79e0a8831b10971a7aa47a2f919fd1fa045df6c8)





(grafted from 79e0a8831b10971a7aa47a2f919fd1fa045df6c8)







docs: wording tweaks, emphasized 1.7 changes in hash tutorial, added note about saslprep()
2016-11-27T17:22:41+00:00

Eli Collins
elic@assurancetechnologies.com

2016-11-27T17:22:41+00:00

8ee063dd5f436fdd035e6f596b82ba61bde079a6












docs: minor wording corrections, replaced 'encrypt' with 'hash' in a bunch of places.
2016-11-25T16:53:32+00:00

Eli Collins
elic@assurancetechnologies.com

2016-11-25T16:53:32+00:00

5e230694bdc3c16a6962d3a57ec821584dccdc23












docs: LARGE update to documentation, tutorials added, pages relocated
2016-11-20T19:11:35+00:00

Eli Collins
elic@assurancetechnologies.com

2016-11-20T19:11:35+00:00

a54c5ba533592f7113fd3a4a86bf8a036baa7860

* moved a bunch of pages into 'docs/narr' narrative subsection.
  added placeholder pages in old locations, to minimize inbound link breakage.

* split history into separate pages, was getting way too long.
  removed toplevel CHANGES file, not feasible under new structure.

* passlib.ifc split into reference & tutorial portions,
  tutorial allowed subsuming a bunch of other hash-usage examples.

* added standard fragments for warning about insecure hashes,
  added them to top of a LOT of hash doc pages.

* updated references, various layout tweaks





* moved a bunch of pages into 'docs/narr' narrative subsection.
  added placeholder pages in old locations, to minimize inbound link breakage.

* split history into separate pages, was getting way too long.
  removed toplevel CHANGES file, not feasible under new structure.

* passlib.ifc split into reference & tutorial portions,
  tutorial allowed subsuming a bunch of other hash-usage examples.

* added standard fragments for warning about insecure hashes,
  added them to top of a LOT of hash doc pages.

* updated references, various layout tweaks