[PySide] secure password handling
Frank Rueter | OHUfx
frank at ohufx.com
Sun Jun 17 23:59:45 CEST 2012
Thanks Srini.
On 18/06/12 5:44 AM, Srini Kommoori wrote:
> For a desktop application, I would recommend using keyring
> http://pypi.python.org/pypi/keyring
>
> For file level password application, I would use PBKDF2 with very high
> iteration count. For my application, Safebox, I have used this method.
> Here are the details.
> http://safebox.fabulasolutions.com/p/safebox-crypto-architecture.html
>
> all the best
>
> On Jun 15, 2012, at 12:52 AM, Henry Gomersall<heng at cantab.net> wrote:
>
>> On Fri, 2012-06-15 at 11:50 +1200, Frank Rueter | OHUfx wrote:
>>> I'm wondering about the best way to handle password input in PySide.
>>> I know about python's hashlib, but am wondering if there is a better
>>> way
>>> to provide security between the user's input into a PySide widget and
>>> the hashing. A friend was wondering about a precompiled widget that
>>> does
>>> the hashing directly so the password is never once stored anywhere as
>>> plain text.
>>>
>>> What are people's approaches for this?
>> so, in light of the recent LinkedIn debacle, the following was brought
>> to my attention:
>>
>> http://codahale.com/how-to-safely-store-a-password/
>>
>> I'm not a security expert, which is why I feel the need to listen to all
>> the arguments!
>>
>> Cheers,
>>
>> Henry
>>
>> _______________________________________________
>> PySide mailing list
>> PySide at qt-project.org
>> http://lists.qt-project.org/mailman/listinfo/pyside
More information about the PySide
mailing list