Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Question - How to use a different hashing algorithm? #278

Closed
9mido opened this issue Oct 4, 2020 · 3 comments
Closed

Question - How to use a different hashing algorithm? #278

9mido opened this issue Oct 4, 2020 · 3 comments

Comments

@9mido
Copy link

9mido commented Oct 4, 2020
edited
Loading

The default pgcrypto extension is PGP (public key/privacy key) output looks like:

\xc30d0407030286e239c36fe48d126dd24401086aecb7805d0e52fc77c32bc341f566153ee9e291d11f8972a6fd63a44282b5a7df09fad63d0bbd1eb1374980a9e10e13d2987a1289e193a749f496aec0195e1eb5e3

Not sure if this is the most secure by default. If improved algorithms are found in the future, how would you configure them?

If not using PGP and instead a one way hash, why not use other options like bcrypt are argon2, pbkdf2, scrypt, etc. instead of SHA.

Perhaps an improvement to django-pgcrypto-fields would be to configure what types of algorithms you would want to use? Or is there already a way to configure this with postgres or something?
@peterfarrell
Copy link
Collaborator

This is a duplicated of #135 which had a "help wanted" label on to improve this library.

@9mido
Copy link
Author

9mido commented Nov 26, 2020

Thanks did not see that other one.

@peterfarrell
Copy link
Collaborator

@9mido PRs welcome on #135

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@peterfarrell @9mido