Re: [DRAFT RFC] Adding Simplified Password Hashing API

From:	Pierre Joye	Date:	Thu, 28 Jun 2012 06:15:47 +0000
Subject:	Re: [DRAFT RFC] Adding Simplified Password Hashing API
References:	1 2 3 4 5 6 7 8 9 10 11 12	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

hi,

On Thu, Jun 28, 2012 at 12:03 AM, Ángel González <[email protected]> wrote:

> Precisely the point of such constant is to allow the applications to
> magically

Right, but not a default argument, which is bad in this case, for the
reasons explained earlier.

> Obviously, any such bump -which I would expect to happen on major releases-
> would hold an entry in the NEWS file explaining that PASSWORD_DEFAULT_HASH

I have no problem with such constant and let the user uses it instead
of a given algo. But then he will do it on purpose and being well
informed about the implications.

Cheers,
-- 
Pierre

@pierrejoye | http://blog.thepimp.net | http://www.libgd.org


   

Thread (43 messages)

• Anthony FerraraTue, 26 Jun 2012 15:25:19 +0000
  • Simon SchickWed, 27 Jun 2012 10:13:30 +0000
    • Pierre JoyeWed, 27 Jun 2012 10:37:45 +0000
    • Anthony FerraraWed, 27 Jun 2012 11:24:49 +0000
      • Pierre JoyeWed, 27 Jun 2012 11:37:50 +0000
        • Gustavo LopesWed, 27 Jun 2012 11:49:38 +0000
          • Pierre JoyeWed, 27 Jun 2012 12:12:56 +0000
            • Anthony FerraraWed, 27 Jun 2012 12:24:39 +0000
              • Gustavo LopesWed, 27 Jun 2012 12:32:15 +0000
                • Pierre JoyeWed, 27 Jun 2012 12:43:35 +0000
                  • Gustavo LopesWed, 27 Jun 2012 12:59:51 +0000
                    • Pierre JoyeWed, 27 Jun 2012 16:13:17 +0000
                      • Ángel GonzálezWed, 27 Jun 2012 22:03:19 +0000
                        • Pierre JoyeThu, 28 Jun 2012 06:15:47 +0000
                      • Anthony FerraraThu, 28 Jun 2012 02:06:52 +0000
                  • Anthony FerraraWed, 27 Jun 2012 13:08:19 +0000
                    • Arvids GodjuksWed, 27 Jun 2012 13:23:26 +0000
                      • Anthony FerraraWed, 27 Jun 2012 14:16:07 +0000
                        • Arvids GodjuksWed, 27 Jun 2012 16:32:54 +0000
                          • Anthony FerraraThu, 28 Jun 2012 01:52:49 +0000
                          • Jonathan Bond-CaronTue, 31 Jul 2012 12:02:39 +0000RE: [PHP-DEV] [DRAFT RFC] Adding Simplified Password Hashing API
                            • Pierre JoyeTue, 31 Jul 2012 12:23:35 +0000Re: [DRAFT RFC] Adding Simplified Password Hashing API
                        • Christopher JonesMon, 02 Jul 2012 19:57:52 +0000
            • Anthony FerraraTue, 03 Jul 2012 11:53:27 +0000
              • Pierre JoyeTue, 03 Jul 2012 12:06:23 +0000
                • Anthony FerraraTue, 03 Jul 2012 12:38:07 +0000
  • Johannes SchlüterWed, 27 Jun 2012 16:45:07 +0000
    • Anthony FerraraThu, 28 Jun 2012 02:00:33 +0000
      • Pierre JoyeThu, 28 Jun 2012 08:45:22 +0000
      • Johannes SchlüterThu, 28 Jun 2012 09:16:45 +0000
        • Anthony FerraraThu, 28 Jun 2012 19:36:19 +0000
          • Pierre JoyeFri, 29 Jun 2012 07:16:39 +0000
  • Christopher JonesMon, 02 Jul 2012 19:59:05 +0000
    • Anthony FerraraMon, 02 Jul 2012 20:55:19 +0000
      • Christopher JonesMon, 02 Jul 2012 21:21:59 +0000
        • Anthony FerraraMon, 02 Jul 2012 23:23:08 +0000
          • Pierre JoyeTue, 03 Jul 2012 08:42:32 +0000
            • Nikita PopovTue, 03 Jul 2012 08:59:22 +0000
            • Anthony FerraraTue, 03 Jul 2012 11:42:19 +0000