[Koha-bugs] [Bug 9611] Changing the password hashing algorithm from MD5 to more secure Bcrypt
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Apr 3 02:45:16 CEST 2013
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=9611
--- Comment #39 from Mason James <mtj at kohaaloha.com> ---
(In reply to comment #37)
> (In reply to comment #35)
> > (In reply to comment #34)
> > > Ahh in that case I suspect we want a better random generator.
> >
> > I think so.
>
> hmm, how about Crypt::Random::TESHA2?
> it's a minimal and portable module
hmmm, Bytes::Random::Secure looks even better...
"Prior to version 0.20, a heavy dependency chain was required for reliably and
securely seeding the ISAAC generator. Earlier versions required
Crypt::Random::Source, which in turn required Any::Moose.
Thanks to Dana Jacobsen's new Crypt::Random::Seed module, this situation has
been resolved. So if you're looking for a secure random bytes solution that
"just works" portably, and on Perl versions as far back as 5.6.0, you've come
to the right place."
http://search.cpan.org/~davido/Bytes-Random-Secure-0.25/lib/Bytes/Random/Secure.pm
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list