removed pure-python bcrypt implementation, wasn't fast enough to be usuable, and probably never will be.

author: Eli Collins <elic@assurancetechnologies.com> 2011-03-24 17:43:48 -0400
committer: Eli Collins <elic@assurancetechnologies.com> 2011-03-24 17:43:48 -0400
commit: 771a8d2c0f909c6e8a59ff39ee4a1e939d799ce9 (patch)
tree: 7d29becac68bd8d024fe3cc61149dcbd2fe5bde5 /passlib/handlers/des_crypt.py
parent: f510569f259224181591e5b82a4e12aee1d8c577 (diff)
download: passlib-771a8d2c0f909c6e8a59ff39ee4a1e939d799ce9.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/passlib/handlers/des_crypt.py b/passlib/handlers/des_crypt.py
index d237dff..ac9da21 100644
--- a/passlib/handlers/des_crypt.py
+++ b/passlib/handlers/des_crypt.py
@@ -227,6 +227,11 @@ class des_crypt(MultiBackendHandler):
 #=========================================================
 #handler
 #=========================================================
+
+#FIXME: phpass code notes that even rounds values should be avoided for BSDI-Crypt,
+# so as not to reveal weak des keys. given the random salt, this shouldn't be
+# a very likely issue anyways, but should do something about default rounds generation anyways.
+
 class bsdi_crypt(ExtendedHandler):
     """This class implements the BSDi-Crypt password hash, and follows the :ref:`password-hash-api`.
author	Eli Collins <elic@assurancetechnologies.com>	2011-03-24 17:43:48 -0400
committer	Eli Collins <elic@assurancetechnologies.com>	2011-03-24 17:43:48 -0400
commit	771a8d2c0f909c6e8a59ff39ee4a1e939d799ce9 (patch)
tree	7d29becac68bd8d024fe3cc61149dcbd2fe5bde5 /passlib/handlers/des_crypt.py
parent	f510569f259224181591e5b82a4e12aee1d8c577 (diff)
download	passlib-771a8d2c0f909c6e8a59ff39ee4a1e939d799ce9.tar.gz