|
You are here |
dusted.codes | ||
| | | | |
www.sjoerdlangkemper.nl
|
|
| | | | | To securely store passwords they should be hashed with a slow hashing function, such as PBKDF2. PBKDF2 is slow because it calls a fast hash function many times. This blog post explores some properties that the iterations must have to be secure. | |
| | | | |
blog.josefsson.org
|
|
| | | | | ||
| | | | |
www.splitbrain.org
|
|
| | | | | [AI summary] The post explains how to manage password hashing in PHP using DokuWiki's auth_cryptPassword() and auth_verifyPassword() functions to support multiple algorithms like MD5, SHA1, and crypt while ensuring backward compatibility. | |
| | | | |
josh.blog
|
|
| | | Modern web applications have a responsibility to prevent their users from using easily compromised passwords. I would also say that it's in their best interest, although it's certainly a trade off. Most people still don't use password managers, so stricter requirements will lead to some people losing access to their accounts. Still though, forcing people [...] | ||