-
**Originally created by Marc Schiffbauer on 2013-07-18T12:56:33Z**
It should be possible to use and produce hashes like that one for example:
{SHA512-CRYPT}$6$rounds=20000$
-
Hi,
I'm a little bit concerned using https://github.com/agentzh/encrypted-session-nginx-module. As I understand, that module is creating stateless (unsigned?) session cookies (the data is stored on a…
-
1) In recent discussions, Shivam mentioned that hashing algo must not be in DB because that reveals too much info in case the DB is compromised. So, if we have to remove the hashing algo from the DB, …
-
This is 2013. Use SHA-2, PBKDF2, etc... Use an individual salt for each password!
cham updated
11 years ago
-
Using bcrypt and a blacklist is impractical because checking whether a user is banned is a O(n) operation where each check takes ~3 seconds. Ideas are welcome.
-
Bcrypt hashing requires php 5.3.7, because of the needed support for $2y. But as described in https://github.com/ircmaxell/password_compat/issues/10, there are versions where this support is backporte…
-
I've got: OS-x 10.7.5
Node: 0.10.7
The library installs ok on Heroku, but not on my local machine.
Here are the errors:
```
unknownc8bcc8e6a32b:hashing peko6107$ npm install
npm WARN package.json h…
-
I looked through all of the articles in the "15 Poor Password Storage" library of services.teammentor.net (which I assume all came from the main set of TM content) and all articles talked about using …
-
Atm the password hashing is hardcoded into the site, thus basically telling everyone how many times we hash the PWs on zkillboard.com
Sooooooo, we have to move that to the config, and alter the hashi…
-
I created an account and activated it via email (sweet feature!)
tried to login with said account and it says the password is wrong, password is my last name and was copy pasted into the input box.