1 |
Am Donnerstag, 21. September 2006 16:49 schrieb Vlastimil Babka: |
2 |
> Although the "more secure than MD5" part is now questionable, I suppose |
3 |
> the "directly available in python" part still holds? |
4 |
|
5 |
From "What's new in python 2.5" |
6 |
|
7 |
13.3 The hashlib package |
8 |
A new hashlib module, written by Gregory P. Smith, has been added to replace |
9 |
the md5 and sha modules. hashlib adds support for additional secure hashes |
10 |
(SHA-224, SHA-256, SHA-384, and SHA-512). When available, the module uses |
11 |
OpenSSL for fast platform optimized implementations of algorithms. |
12 |
The old md5 and sha modules still exist as wrappers around hashlib to |
13 |
preserve backwards compatibility. The new module's interface is very close to |
14 |
that of the old modules, but not identical. The most significant difference |
15 |
is that the constructor functions for creating new hashing objects are named |
16 |
differently. |
17 |
|
18 |
|
19 |
I think sha256/512 is the only thing that makes sense at the moment, as it |
20 |
most probably will stay secure for quite a while and we don't have real |
21 |
alternatives. So imho use sha256, get rid of everything else, because that |
22 |
rarely improves security, and wait for the nist to define something new |
23 |
(which will happen, but probably take some years from now). |
24 |
|
25 |
cu, |
26 |
|
27 |
Hanno |