fix(password-hash): Update PBKDF2 iteration count to more closely align with OWASP recommendations (#648)

Author: TaaviE

lib/consts.js

@@ -43,7 +43,7 @@ module.exports = {
     DEFAULT_HASH_ALGO: 'pbkdf2', //either 'pbkdf2' or 'bcrypt'
 
     BCRYPT_ROUNDS: 11, // bcrypt.js benchmark async in a VPS: 261.192ms, do not want to take it too long
-    PDKDF2_ITERATIONS: 25000,
+    PDKDF2_ITERATIONS: 100000,
     PDKDF2_SALT_SIZE: 16,
     PDKDF2_DIGEST: 'sha256', // 'sha512', 'sha256' or 'sha1'