Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bcrypt missing number of passes #1

Open
kotky opened this issue Sep 1, 2018 · 2 comments
Open

bcrypt missing number of passes #1

kotky opened this issue Sep 1, 2018 · 2 comments
Assignees
@gilbertwong96
Labels
question Further information is requested

Comments

@kotky
Copy link

kotky commented Sep 1, 2018

Hi, I just noticed that bcrypt hash function is missing number of passes, is that intentional?
@terry-xiaoyu terry-xiaoyu added the question Further information is requested label Sep 17, 2018
@ngjaying
Copy link
Member

Hi Josip,
The number of rounds can be set within the salt. You can use any tools to generate salt and feed it to emqx_passwd:hash(bcrypt, {Salt, Password})

For example, use erlang-bcrypt to generate salt:

Round = 20,
{ok, Salt} = bcrypt:gen_salt(Round),  %% Set the number of rounds here
emqx_passwd:hash(bcrypt, {Salt, Password}).

@ngjaying ngjaying mentioned this issue Sep 18, 2018
Closed
@anishnath
Copy link

Used https://8gwifi.org/bccrypt.jsp for bcrypt/scrypt password hash in dev enviroment looks strong

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gilbertwong96 gilbertwong96

Labels
question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@ngjaying @kotky @anishnath @terry-xiaoyu @gilbertwong96