|
|
|
|
|
|
by masklinn
491 days ago
|
|
|
You might need it if you’re porting / reimplementing a system and have to be compatible with an existing base of hashed truncated passwords. I would agree that it should not just be called “bcrypt” though, likely no function of this module should be, they should either explain their risks or clarify their safety. Or possibly only a version which fails if passed more than 72 bytes or any nul. |
|
|