|
|
|
|
|
|
by jarrett
4678 days ago
|
|
|
> if you can't use bcrypt or something like it, you should store passwords in plain text No, he's saying that if you can't use an acceptable hashing function, you shouldn't store passwords at all. But, why would you be unable to use at least one of the suggested hashing functions, anyway? It's hard for me to imagine a language or platform where none of those functions is available, excluding very simple, special-purpose systems like PLCs. |
|
|
You can't use any python module that runs C, which rules out bcrypt and its ilk.