|
|
|
|
|
|
by Aardwolf
118 days ago
|
|
|
> KDF settings are stored on the server without authentication, allowing a malicious server to reduce the iteration count How though, that would also require the client to re-generate the key based on the server setting without te user choosing to do so, does it do that? |
|
|