matiu2
commented
13 years ago Thanks starius. I think I'll go with the SHA-512 crypt scheme mentioned here: http://en.wikipedia.org/wiki/Crypt_(Unix)
Open starius opened 13 years ago
matiu2
commented
13 years ago Thanks starius. I think I'll go with the SHA-512 crypt scheme mentioned here: http://en.wikipedia.org/wiki/Crypt_(Unix)
IMHO, it is better to store salted passwords to complicate brute-force attacks and prevent from searching for users with same passwords. It was implemented in my project thechess based on Wt: https://bitbucket.org/starius/thechess/src/0ae7a62861b8/src/model/User.cpp See method User::set_password