[Zope-dev] Salt-weakness in zope.app.authentication passwordmanagers?

[Shane Hathaway]

Uli Fouquet wrote:
> Do we need a SMD5-manager as well (same as SSHA, only with MD5 instead
> of SHA1 as hash algorithm)?

I doubt it.

> Any reviews by the more competent gurus in the list are highly
> appreciated.

Your implementation and docs look fine to me.  The only comment I have 
is I wonder why this is zope.app.authentication instead of 
zope.authentication, but that's a different discussion for another day.

Shae