Mercurial > p > roundup > code
changeset 4488:d483a40e2f82
more verbose description of password hashing, thanks to Eli Collins
| author | Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net> |
|---|---|
| date | Fri, 15 Apr 2011 18:57:17 +0000 |
| parents | 5e9578d35d03 |
| children | 47bd330e3d17 |
| files | roundup/configuration.py |
| diffstat | 1 files changed, 13 insertions(+), 1 deletions(-) [+] |
line wrap: on
line diff
--- a/roundup/configuration.py Fri Apr 15 12:00:56 2011 +0000 +++ b/roundup/configuration.py Fri Apr 15 18:57:17 2011 +0000 @@ -540,7 +540,19 @@ (IntegerNumberOption, 'password_pbkdf2_default_rounds', '10000', "Sets the default number of rounds used when encoding passwords\n" "using the PBKDF2 scheme. Set this to a higher value on faster\n" - "systems which want more security."), + "systems which want more security.\n" + "PBKDF2 (Password-Based Key Derivation Function) is a\n" + "password hashing mechanism that derives hash from the\n" + "password and a random salt. For authentication this process\n" + "is repeated with the same salt as in the stored hash.\n" + "If both hashes match, the authentication succeeds.\n" + "PBKDF2 supports a variable 'rounds' parameter which varies\n" + "the time-cost of calculating the hash - doubling the number\n" + "of rounds doubles the cpu time required to calculate it. The\n" + "purpose of this is to periodically adjust the rounds as CPUs\n" + "become faster. The currently enforced minimum number of\n" + "rounds is 1000.\n" + "See: http://en.wikipedia.org/wiki/PBKDF2 and RFC2898"), )), ("tracker", ( (Option, "name", "Roundup issue tracker",