Password hash

R

Robert Montgomery

I am writing a script that will send an email using an account I set up
in gmail. It is an smtp server using tls on port 587, and I would like
to use a password hash in the (python) script for login rather than
plain text. Is this do-able? Details please.
 
R

Ramchandra Apte

I am writing a script that will send an email using an account I set up

in gmail. It is an smtp server using tls on port 587, and I would like

to use a password hash in the (python) script for login rather than

plain text. Is this do-able? Details please.
Click to expand...

No. The password is encrypted with TLS I think so I believe you shouldn't worry much about security.
 
R

Ramchandra Apte

I am writing a script that will send an email using an account I set up

in gmail. It is an smtp server using tls on port 587, and I would like

to use a password hash in the (python) script for login rather than

plain text. Is this do-able? Details please.
Click to expand...

No. The password is encrypted with TLS I think so I believe you shouldn't worry much about security.
 
I

Ian Kelly

No. The password is encrypted with TLS I think so I believe you shouldn't worry much about security.
Click to expand...

The smtplib module automatically uses CRAM-MD5 for authentication if
it is available. If you wanted to use some other hashing scheme then
I guess you would have to implement it yourself by overriding
SMTP.login, or find another SMTP module that already supports it.

The above comment about security is bad advice. Security is all about
layers. Just because the data stream is already encrypted (read:
decryptable) does not mean that password digests are a waste of time.
In fact, the two techniques are usually considered complementary: the
encryption process protects your application data, while the password
hashing protects your authentication details.
 
P

Peter Pearson

I am writing a script that will send an email using an account I set up
in gmail. It is an smtp server using tls on port 587, and I would like
to use a password hash in the (python) script for login rather than
plain text. Is this do-able? Details please.
Click to expand...

No, *you* need to provide details. Security problems nearly always
emerge from the details, so it's important to be as clear as possible
about what you want to achieve and what the threat is.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

How to Create a random password generator in a separate window 4
How to send email programmatically from a gmail email a/c when port587(smtp) is blocked 5
Script to send email not working 1
Password validation security issue 19
Registration Form 7
Tryign to send mail via a python script by using the local MTA 58
logging module, SMTPHandler and gmail in python 2.6 1
generate and send mail with python: tutorial 8

Members online

No members online now.
Total: 30 (members: 0, guests: 30)
Robots: 298

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,007
Latest member
obedient dusk

Latest Threads

Top