[Pharo-dev] How to encrypt a password?

Davide Varvello varvello at yahoo.com
Thu Nov 21 15:56:33 EST 2013


Paul,

I've already tried to load PasswordHashingFFI-PaulDeBruicker.16.mcz, but a
warning shows:

This package depends on the following classes:
  ExternalStructure
You must resolve these dependencies before you will be able to load these
definitions: 
  BCryptLinuxFFI
  bcrypt:
  bcrypt:with:
  bcrypt:with:for:
  bcrypt:withSalt:
  checkPassword:against:
  defaultRounds
  ffiCrypt:with:
  generateBCryptIterations:
  generateBCryptSalt:
  generateRandomSalt
  iterationString:
  randomBCryptSaltData
  saltDataLength
  saltOutputLength
  CryptLinuxFFI
  checkPassword:against:
  des:
  des:with:
  ffiCrypt:with:
  md5:
  md5:with:
  prepareSalt:
  randomSalt
  randomSalt:
  saltDataLength
  sha256:
  sha256:with:
  sha512:
  sha512:with:


Select Proceed to continue, or close this window to cancel the operation.

Cheers
Davide


Paul DeBruicker wrote
> Hi Davide,
> 
> 
> You need to be on Linux and
> 
> On pharo or squeak
>  - have a 32bit version of libxcrypt installed.  
>  - use this mcz 
>        
> http://www.squeaksource.com/Cryptography/PasswordHashingFFI-PaulDeBruicker.16.mcz
>            or
>        
> http://www.smalltalkhub.com/mc/Cryptography/Cryptography/main/PasswordHashingFFI-PaulDeBruicker.16.mcz
>            (they're the same file)
> 
> On GemStone
>  - have a 64bit version of libxcrypt installed
>  - use this mcz 
> http://seaside.gemtalksystems.com/ss/Cryptography/PasswordHashingFFI-PaulDeBruicker.10.mcz
> 
> 
> The Blowfish stuff is an implementation of the cipher
> (https://en.wikipedia.org/wiki/Blowfish_%28cipher%29).  BCrypt uses
> blowfish as its encryption mechanisim, calling it tens to hundreds of
> thousands of times.  
> 
> 
> The PasswordHashingFFI package also includes support for accessing the
> crypt(3) library so you can use SHA512 password hashing too if you like
> (or other mechanisms it supports like DES, MD5, etc)
> 
> 
> Hope this helps
> 
> Paul





--
View this message in context: http://forum.world.st/How-to-encrypt-a-password-tp3933585p4724096.html
Sent from the Pharo Smalltalk Developers mailing list archive at Nabble.com.




More information about the Pharo-dev mailing list