Andreas/tracks
1
0
Fork 0
mirror of https://github.com/TracksApp/tracks.git synced 2025-12-23 10:40:13 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
tracks/spec/fixtures
History
Jan Stępień 95f0f71441 Hash passwords with BCrypt instead of SHA1 
BCrypt is regarded as a more secure alternative to hashing using message
digest algorithms, such as MD5 and SHA families [0, 1, 2]. Apart from
built-in salting it is adaptable to the increasing power of modern
processing units, which makes it more secure against brute-force cracking.

This commit makes all passwords hashed using BCrypt. The session tokens
remain generated using SHA1. Tests were updated, `rake test:units` and
`rake test:functionals` didn't report any regressions.

[0] http://bcrypt.sourceforge.net/
[1] http://en.wikipedia.org/w/index.php?title=Bcrypt&oldid=439692871
[2] eab1c72/README.md
2011-09-07 16:05:52 +02:00
..
contexts.yml Context model specs completed. Using fixtures for some examples currently, but might convert to mocks in future. Specs now offer same coverage as Test::Unit tests for Context model. 2008-06-22 15:30:38 +01:00
preferences.yml Context model specs completed. Using fixtures for some examples currently, but might convert to mocks in future. Specs now offer same coverage as Test::Unit tests for Context model. 2008-06-22 15:30:38 +01:00
todos.yml Eliminated use of scenarios plugin 2009-12-08 13:34:06 -05:00
users.yml Hash passwords with BCrypt instead of SHA1 2011-09-07 16:05:52 +02:00