Open ricecake opened 2 years ago
Use a constant time comparison function to compare password hashes This guards against the possibility of leaking timing information when comparing hashes.
Given the context, it's a small risk but still better to remove issues.
Use a constant time comparison function to compare password hashes This guards against the possibility of leaking timing information when comparing hashes.
Given the context, it's a small risk but still better to remove issues.