Y
Hacker News
new
|
ask
|
show
|
jobs
by
rpedela
3340 days ago
Postgres bcrypt is wicked fast. You need some crazy load before it makes sense to move hashing out of the DB.
2 comments
Xylakant
3340 days ago
If your PW hashing function is wicked fast, you need to increase the work factor. The whole idea of a paw hash is to be comparatively slow, because that's one property that makes it harder to crack. Otherwise we could all go back to salted md5
link
jeltz
3340 days ago
Please change to a higher factor. PostgreSQL's default is a bit outdated and too low for modern computers.
link