[Catalyst-commits] r9404 -
Catalyst-Manual/5.70/trunk/lib/Catalyst/Manual/Tutorial
hkclark at dev.catalyst.perl.org
hkclark at dev.catalyst.perl.org
Sat Feb 28 21:14:52 GMT 2009
Author: hkclark
Date: 2009-02-28 21:14:51 +0000 (Sat, 28 Feb 2009)
New Revision: 9404
Modified:
Catalyst-Manual/5.70/trunk/lib/Catalyst/Manual/Tutorial/Authentication.pod
Log:
Add comment about salt
Modified: Catalyst-Manual/5.70/trunk/lib/Catalyst/Manual/Tutorial/Authentication.pod
===================================================================
--- Catalyst-Manual/5.70/trunk/lib/Catalyst/Manual/Tutorial/Authentication.pod 2009-02-28 16:38:17 UTC (rev 9403)
+++ Catalyst-Manual/5.70/trunk/lib/Catalyst/Manual/Tutorial/Authentication.pod 2009-02-28 21:14:51 UTC (rev 9404)
@@ -633,7 +633,9 @@
between the browser and your application, consider using SSL/TLS, made
easy with the Catalyst plugin Catalyst::Plugin:RequireSSL. You should
also consider adding a "salt" mechanism to your hashed passwords to
-mitigate the risk of a "rainbow table" crack against your passwords.
+mitigate the risk of a "rainbow table" crack against your passwords (see
+L<Catalyst::Authentication::Credential::Password|Catalyst::Authentication::Credential::Password>
+for more information on using a salt value).
=head2 Get a SHA-1 Hash for the Password
More information about the Catalyst-commits
mailing list