/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

8yd.no
| | qsantos.fr
1.6 parsecs away

Travel
| | [AI summary] The article discusses the security implications of client-side password hashing, arguing that it can be secure when combined with memory-hard functions and proper implementation.
| | myers.io
1.7 parsecs away

Travel
| | Every so often I see posts on Stack Exchange, or Hacker News where someone has figured out that their passwords are being sent to the server and the server can see them! The logic that we see is that if the password is hashed client side, then only the hash needs to be sent to the server, so the server never knows the password. Unfortunately, I sometimes even see this go one step further when people suggest that with this arrangement, HTTPS isnt required. Wrong.
| | blog.luke.wf
2.6 parsecs away

Travel
| | I've been thinking a lot recently about information security and passwords. It's widely agreed that two-factor authentication, which combi...
| | www.paragonie.com
25.0 parsecs away

Travel
| A quick comparison of libsodium functions with similar names/purposes, and which one to use for a specific use case