md5_crypt deprecated by author, updated docs accordingly

author: Eli Collins <elic@assurancetechnologies.com> 2012-06-27 15:58:17 -0400
committer: Eli Collins <elic@assurancetechnologies.com> 2012-06-27 15:58:17 -0400
commit: 7992e8ed13059859a0b17d9569a8081763df645f (patch)
tree: 4c76f98a32dab6e2dabb71dd068c1d7064c0d68d /passlib/apache.py
parent: 9240ba7bdc000be61a7a1d4cea8df1866e19bfd4 (diff)
download: passlib-7992e8ed13059859a0b17d9569a8081763df645f.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/passlib/apache.py b/passlib/apache.py
index ce4dbb9..e985667 100644
--- a/passlib/apache.py
+++ b/passlib/apache.py
@@ -372,7 +372,11 @@ class _CommonFile(object):
 #=========================================================
 
 # FIXME: apr_md5_crypt technically the default only for windows, netware and tpf.
-# TODO: find out if htpasswd's "crypt" mode is crypt *call* or just des_crypt implementation.
+# TODO: find out if htpasswd's "crypt" mode is a crypt() *call* or just des_crypt implementation.
+#       if the former, we can support anything supported by passlib.hosts.host_context,
+#       allowing more secure hashes than apr_md5_crypt to be used.
+#       could perhaps add this behavior as an option to the constructor.
+#       c.f. http://httpd.apache.org/docs/2.2/programs/htpasswd.html
 htpasswd_context = CryptContext([
     "apr_md5_crypt", # man page notes supported everywhere, default on Windows, Netware, TPF
     "des_crypt", # man page notes server does NOT support this on Windows, Netware, TPF
author	Eli Collins <elic@assurancetechnologies.com>	2012-06-27 15:58:17 -0400
committer	Eli Collins <elic@assurancetechnologies.com>	2012-06-27 15:58:17 -0400
commit	7992e8ed13059859a0b17d9569a8081763df645f (patch)
tree	4c76f98a32dab6e2dabb71dd068c1d7064c0d68d /passlib/apache.py
parent	9240ba7bdc000be61a7a1d4cea8df1866e19bfd4 (diff)
download	passlib-7992e8ed13059859a0b17d9569a8081763df645f.tar.gz