Jump to content
Yoh Asakura

Storing user passwords - Hashing with Salt

Recommended Posts

On 6/1/2019 at 7:05 AM, Yoh Asakura said:

We're already in 2019 and I wonder if this project will be continued since it's a recommended security measure to keep user info safe.

https://github.com/HerculesWS/Hercules/issues/74

 

Kind Regards.

https://github.com/HerculesWS/Hercules/pull/466

But this is not implemented yet as there's concern of DoS Attack

Share this post


Link to post
Share on other sites
On 6/1/2019 at 9:35 AM, Yoh Asakura said:

We're already in 2019 and I wonder if this project will be continued since it's a recommended security measure to keep user info safe.

https://github.com/HerculesWS/Hercules/issues/74

 

Kind Regards.

Yes this md5 is broken since then if the password contain of 255 length and then it will converted to a high data computation that make stress of server cpu.
For example you have a 512MB ram and you enable password md5. I remember the flux panel enable to change 100k LENGTH of character that converter to MD5.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.