Y
Hacker News
new
|
ask
|
show
|
jobs
by
TZubiri
207 days ago
Alternate title:
"Why Python's bcrypt implementation is unsafe for Password Hashing"
1 comments
enamya
207 days ago
*used to be unsafe just to note, other implementations have the same design (silent and truncate), I've recently found out that htpasswd from Apache HTTP server has the same silent behavior
link