On 25 April 2011 02:57, Iain Duncan iainduncanli...@gmail.com wrote:
Apologies for the cross post ( and direct post), not sure whether this
should be in Pylons discuss or Repoze these days.
I think it's possibly a Pylons post.
error:
raise NameError(key)
RenderError: An uncaught
I use 4 instances of paste with different local ports and using nginx
to serve the static files and do the load balancing between the paste
instances. Even-though I use single server, the performance difference
is a lot when you run multiple instances of paste instances it may due
to Python's lack
Gopal,
We use the inbuilt ACL/Auth system after moving over from Pylons and it
works really well - in particular, it's a great match when using
traversal because you can (for example) have a resource container for
all of your user's private pages and a resource container for all of
your admin's
You should consider using a secure password hash in your users table. Right
now if two users in your template choose the same password they will get the
same hashed password.
--
You received this message because you are subscribed to the Google Groups
pylons-discuss group.
To post to this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I second this - use /bcrypt/ /bcrypt/ /bcrypt/. py-bcrypt is a great
python package for it.
Daniel Holth dho...@gmail.com writes:
You should consider using a secure password hash in your users table.
Right now if two users in your template choose
Hello!
I'm not sure it's the right place to say about Pylons site problem,
but I couldn't find better.
I have a problem viewing the Pylons site on FF 4.0 and it looks like
the reason in serving fonts from different domain
(static.pylonsproject.org) without 'Access-Control-Allow-Origin'
header
On Mon, Apr 25, 2011 at 8:33 AM, Parnell Springmeyer ixma...@gmail.com wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I second this - use /bcrypt/ /bcrypt/ /bcrypt/. py-bcrypt is a great
python package for it.
Daniel Holth dho...@gmail.com writes:
You should consider using a secure
n.b. Gawker Media. Strong password hashes protect your reputation and your
user's accounts on other services when your password database is
compromised. Even if you don't care they are so trivial to implement, why
not use them?
If you are running on a modern Linux distribution all you have to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
No, you don't have to do that.
Here's an article on why bcrypt should be used:
http://codahale.com/how-to-safely-store-a-password/
Mike Orr sluggos...@gmail.com writes:
On Mon, Apr 25, 2011 at 8:33 AM, Parnell Springmeyer ixma...@gmail.com
Hi,
thanks for reporting the issue, Access-Control-Allow-Origin was added
to the server config, can you verify if it works on your side?
On Apr 25, 12:07 am, Oliora oli...@gmail.com wrote:
Hello!
I'm not sure it's the right place to say about Pylons site problem,
but I couldn't find better.
On Mon, Apr 25, 2011 at 1:10 AM, Malthe Borch mbo...@gmail.com wrote:
On 25 April 2011 02:57, Iain Duncan iainduncanli...@gmail.com wrote:
Apologies for the cross post ( and direct post), not sure whether this
should be in Pylons discuss or Repoze these days.
I think it's possibly a Pylons
Congratulations to Joe Dallago and Joel Bohman for being selected by
Google for the 2011 Google Summer of Code for the Pylons Project!
Apologies to the folks who applied but didn't receive a sponsorship:
Julisz Gonera, Joe R. Nassimian, and Chen Tao.
This was a tough decision for us, so I'll
Please look at the shootout implementation of passwords. I added support for
cryptacular there, hoping it might serve as a decent example for using
bcrypt, etc. It'd damn easier than dealing with any hashing yourself.
https://github.com/Pylons/shootout/blob/master/shootout/models.py#L28
Michael
i wish good luck and success to the elected students. the others don't
need to be upset or anything, if you wish to contribute to pyramid,
just fork it. let us hear what you are doing.
On Apr 26, 12:40 am, Chris McDonough chr...@plope.com wrote:
Congratulations to Joe Dallago and Joel Bohman for
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I wasn't aware you could pass $2a$ to os.crypt() to get a bcrypted
hash. I'll remember that.
I prefer a work factor of 15, I've heard 12-15 being recommended (no
references to give though). Anything larger and it takes too long for
the user to log in
Yes, it's fixed!
But I found one more font problem:
'*http://static.pylonsproject.org/fonts/nobile/stylesheet.css*' defines a
set of 'NobileXXX' fonts via @font-face, but in other CSSes the simple
'Nobile' font-name is used. So the Nobile font is not used at all.
Thank you,
Andrey Upadyshev
On
Parnell,
Thank you. I have been using custom authentication and authorization
modules based on Redis. I will tryout the inbuilt modules for these
needs.
Regards,
Krish
On Apr 25, 7:24 pm, Parnell Springmeyer ixma...@gmail.com wrote:
Gopal,
We use the inbuilt ACL/Auth system after moving
17 matches
Mail list logo
