mirror of
https://github.com/theupdateframework/python-tuf
synced 2026-05-24 10:08:28 +00:00
Relocate the default PBKDF2 iterations to tuf.conf
This commit is contained in:
vladdd
parent
c390c41ed6
commit
8c7bee515a
1 changed files with 11 additions and 1 deletions
12
tuf/conf.py
12
tuf/conf.py
|
|
@ -54,4 +54,14 @@
|
|||
# The time (in seconds) we ignore a server with a slow initial retrieval speed.
|
||||
SLOW_START_GRACE_PERIOD = 30 #seconds
|
||||
|
||||
|
||||
# The current "good enough" number of PBKDF2 passphrase iterations.
|
||||
# We recommend that important keys, such as root, be kept offline.
|
||||
# 'tuf.conf.PBKDF2_ITERATIONS' should increase as CPU speeds increase, set here
|
||||
# at 100,000 iterations by default (in 2013). The repository maintainer may opt
|
||||
# to modify the default setting according to their security needs and
|
||||
# computational restrictions. A strong user password is still important.
|
||||
# Modifying the number of iterations will result in a new derived key+PBDKF2
|
||||
# combination if the key is loaded and re-saved, overriding any previous
|
||||
# iteration setting used by the old '<keyid>.key'.
|
||||
# https://en.wikipedia.org/wiki/PBKDF2
|
||||
PBKDF2_ITERATIONS = 100000
|
||||
|
|
|
|||
Loading…
Reference in a new issue