• pkulak@beehaw.org
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    The original idea was that you would take how long it took to brute-force a password, then require the password be changed before that. But we have better hashing now, like bcrypt, where you can tune it so that brute forcing anything would take 100s of years.