lottspot
/ hashing_passwords.py
Created
January 19, 2013 23:40
Scripts for creating and checking hashed/salted passwords in Python
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # coding: utf8 | |
| """ | |
| Securely hash and check passwords using PBKDF2. | |
| Use random salts to protect againt rainbow tables, many iterations against | |
| brute-force, and constant-time comparaison againt timing attacks. | |
| Keep parameters to the algorithm together with the hash so that we can | |
| change the parameters and keep older hashes working. |