't want to just make it easy to secure applications, we want it to be
hard for developers to do something that will compromise their application.
Craig Younkins
On Mon, Jul 26, 2010 at 3:57 PM, Jacob Kaplan-Moss wrote:
> Hi Craig --
>
> Once again, thanks for this work; I can se
x27;re doing our review. We'll bring those
questions here unless otherwise requested.
I also don't want the issues I raised about contrib.auth [3] to be
forgotten.
Craig Younkins
[1] http://www.pythonsecurity.org/
[2]
http://groups.google.com/group/python-security/browse_
On Tue, Jul 20, 2010 at 12:09 PM, Jacob Kaplan-Moss wrote:
> On Tue, Jul 20, 2010 at 8:41 AM, Craig Younkins
> wrote:
> > I'm very glad you don't have MD5 as the default. SHA-1 (currently
> employed)
> > is acceptable for now, but at this point there are theoreti
d nearly 100% of their time
doing this, so it significantly slows them down. See
http://www.pythonsecurity.org/wiki/hashing/#multiple-rounds
*Craig Younkins*
--
You received this message because you are subscribed to the Google Groups
"Django developers" group.
Hello there! My name is Craig Younkins. I'm an intern at OWASP, the
Open Web Application Security Project, and this summer I'm focusing on
web security in Python. My mission is to help developers make more
secure applications.
First, I'd like to invite you to a new co
