On Thu, Oct 16, 2014 at 11:43 AM, John Mellor <johnme@google.com> wrote: > On 16 October 2014 08:52, Mike West <mkwst@google.com> wrote: > >> * Server stores credentials as `sha512(password + username)`. >> > > It might be better to require PBKDF2/bcrypt/scrypt. > Yeah, that certainly makes sense. -mikeReceived on Thursday, 16 October 2014 09:47:05 UTC
This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 17:00:24 UTC