|
|
|
|
|
|
by dwaite
1250 days ago
|
|
|
> Regarding password length - it's been said many times that the easiest way to improve password security is to require longer passwords. Often wrong. Longer passwords help with unlimited brute force attacks, but you can also do things like rate limit remote access (eg captchas after login failures) and use a more resource intensive key protection scheme like high iteration pbkdf2 or argon2 |
|
|