Message152117
[Martin's approach]
> The point I first missed is that this triggers only when the hash is
> *fully* equal; if the hashes are merely equal after masking, then
> today's try-another-slot approach will still be used, even for
> strings.
But then isn't it vulnerable to Frank's first attack as exposed in
http://mail.python.org/pipermail/python-dev/2012-January/115726.html ? |
|
Date |
User |
Action |
Args |
2012-01-27 20:25:14 | pitrou | set | recipients:
+ pitrou, lemburg, gvanrossum, tim.peters, loewis, barry, georg.brandl, terry.reedy, gregory.p.smith, jcea, mark.dickinson, vstinner, christian.heimes, benjamin.peterson, eric.araujo, grahamd, Arfrever, v+python, alex, zbysz, skrah, dmalcolm, gz, neologix, Arach, Mark.Shannon, eric.snow, Zhiping.Deng, Huzaifa.Sidhpurwala, Jim.Jewett, PaulMcMillan, fx5 |
2012-01-27 20:25:14 | pitrou | set | messageid: <1327695914.19.0.0339252748661.issue13703@psf.upfronthosting.co.za> |
2012-01-27 20:25:13 | pitrou | link | issue13703 messages |
2012-01-27 20:25:13 | pitrou | create | |
|