|
|
|
|
|
|
by MarkMc
4613 days ago
|
|
|
Yes the figure of 99.8% does seem a little high. After a bit more research it seems Mr Burnett himself can see 'a few flaws' with that figure [1]. Just to clarify: my original point wasn't that you should continue using md5. Rather, it was that bcrypt doesn't improve your security much. Given the problems with the 99.8% figure, it would be better to say, "the extra security that bcrypt provides might be less than you expect". [1] https://xato.net/passwords/how-i-collect-passwords/ |
|
|