-
### Expected behaviour
User should be able to select SCRAM-SHA1 as a form of authentication for IMAP.
## Rationale
CRAM-MD5 is deprecated. SCRAM-SHA1 is fairly well adopted. If SSL/TLS is deployed w…
-
MacOS BigSur, AMD Radeon Pro 5700 XT 16 GB
% ./john --list=build-info
Version: 1.9.0-jumbo-1+bleeding-b49c763c4 2021-06-24 21:32:53 +0200
Build: darwin20.5.0 64-bit x86_64 AVX2 AC
SIMD: AVX2, in…
-
Use md5(username + password) to store login password is not secure, please consider use sha256.
用 md5(username + password) 的方式存储密码是不安全的,建议至少使用 sha256.
-
Since John (CPU only) and Elcomsoft DPR have support, I'd like to suggest trying to achieve native support in oclHashcat.
In the past I've had terrible luck with buggy Elcomsoft Distributed Password…
-
Well, # 4414 shows us that a commit with untested code was merged. So, I:
```
$ openssl aes-256-cbc -a -salt -in 4414.patch -out secrets.txt.enc
```
And I noticed that in addition to dozens of f…
-
Parameters:
```
digest: MD2
password: {0x81} (1 bytes)
salt: {0x01} (1 bytes)
iterations: 1
keySize: 88
```
mbed TLS produces:
```
{0xde, 0x5a, 0xee, 0xcf, 0x1f, 0xbf, 0x8b, 0x7f, 0xc0…
-
We are implementing a full SRP system for browser-based authentication.
On the server side, we are using "mozilla/node-srp", which uses "justmoon/node-bignum" for dealing with big integers. Speed is …
-
Upgrade current password security algorithm.
**Hashing**
Hashing and encryption both provide ways to keep sensitive data safe. However, in almost all circumstances, passwords should be hashed, NOT…
-
Upgrade current password security algorithm.
**Hashing**
Hashing and encryption both provide ways to keep sensitive data safe. However, in almost all circumstances, passwords should be hashed, NOT…
-
I'm working on adding support for exporting a locked wallet as per [the spec](https://w3c-ccg.github.io/universal-wallet-interop-spec/#locked-wallet) to [digitalcredentials/learner-credential-wallet](…