|
|
|
|
|
|
by klodolph
2352 days ago
|
|
|
SHA-256 is absolutely not recommended for storing passwords, and it was never designed for that purpose. If you are storing passwords with SHA-256 you should immediately migrate them to a password hashing algorithm. See “Upgrading Legacy Hashes” in the link below. https://cheatsheetseries.owasp.org/cheatsheets/Password_Stor... Recommended algorithms: - Argon2 - PBKDF2 - Bcrypt |
|
|