J
jankeir
Guest
Ah sorry, I guess I misunderstood what you were saying ;-) But still, read the link, you may want a more expensive hashing algorithm ;-) It's suprising how cheap it is to brute force some hashes with a couple of GCE or EC2 nodes. Or even better with a good old botnet. Most hashing functions were designed to be cheap to calculate on purpose (you don't want a file checksum verification to take ages), but you do want one that is expensive for storing passwords.
Continue reading...
Continue reading...