From the course: Secure Coding in Python
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Password hashing with Flask - Python Tutorial
From the course: Secure Coding in Python
Password hashing with Flask
- [Instructor] So the next issue we're going to discuss is so problematic that it gets mentioned in two of the OWASP top 10 web application security risks. It deals with broken authentication and sensitive data exposure. And that is password hashing. Passwords should never be stored in plain text. And this is one of those issues where a failure to hash passwords can lead to problems, not only in your application, but in other applications as well. To show you what I mean, let's walk through a scenario I like to call password hashing nightmare. Let's suppose your app does not have much sensitive data in it. Because of this, you don't really bother with security related issues. And one of those issues is hashing passwords. Instead, you just keep user credentials in plain text. Then one day someone hacks your database, gaining access to all of your user's credentials. On the surface, this might not look like a big deal.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.