in reply to Re: Adjust bcrypt cost to prevent future password hash attacks
in thread Adjust bcrypt cost to prevent future password hash attacks
Data must be secured in transit and at rest. TLS protects data in transit only, and does not prevent offline attacks (e.g. recent Linkin breach).
We need both TLS and bcrypt, not just the former.
--
No matter how great and destructive your problems may seem now, remember, you've probably only seen the tip of them. [1]
No matter how great and destructive your problems may seem now, remember, you've probably only seen the tip of them. [1]
|
---|
Replies are listed 'Best First'. | |
---|---|
Re^3: Adjust bcrypt cost to prevent future password hash attacks
by Anonymous Monk on Jun 12, 2012 at 08:52 UTC | |
by dsheroh (Monsignor) on Jun 12, 2012 at 17:25 UTC | |
by Jeppe (Monk) on Jun 13, 2012 at 08:32 UTC |
In Section
Seekers of Perl Wisdom