Open utterances-bot opened 2 years ago
it is worth mentioning that nowadays your two go-to password hashes should be Argon2id and scrypt, and only bcrypt/PBKDF2 if robust implementations of the first two aren't available. realistically though, all of the options provide enough security margin for algorithm choice to be mostly irrelevant
How to handle passwords
https://mccue.dev/pages/6-27-21-how-to-handle-passwords