Y
Hacker News
new
|
ask
|
show
|
jobs
by
Havoc
322 days ago
One can really sense the pain just reading the headings
Also a crypto library that limits passwords to 72 bytes? That’s wild
1 comments
AstralStorm
322 days ago
It's written with constant memory allocation in mind. Silly of them to use such a small buffer though, make it a configuration option.
link
mras0
321 days ago
No, it's due to the construction of bcrypt - it ends up using the password more or less directly as the key for blowfish (the underlying cipher) which is why the limit is there. Check wikipedia for details.
link
nothrabannosir
321 days ago
I assumed all hashes are in O(1) space? Is there any that’s not?
link