Questions tagged as 'bcrypt'

3
answers

Scrypt, Bcrypt or anything else

I am choosing a hash algorithm for the passwords of a system I develop. At the beginning of my "programmatic" I used MD5 , SHA-1 and its derivants. After a while I chose Whirlpool and now I'm looking for something more robust...
asked by 27.02.2014 / 19:04
1
answer

What is the correct way to use BCrypt?

I want to give a satisfactory level of security to my system. In my searches I found several functions that create hashs for passwords, but of all of them, what I saw the most recommended were PBKDF2 and BCrypt. Home In all searches however, wha...
asked by 18.09.2015 / 17:04
2
answers

Error - Password update bcrypt mongoose without encryption

I am not able to encrypt my password during an update using bcrypt on mongoose. The password is changed without problems, but without encryption. Follow the schema: var mongoose= require('mongoose'); module.exports= function(){ var schema=...
asked by 28.05.2015 / 14:50
1
answer

Bcrypt in java and php does not match

I have a Php application that registers a person and when the person poe the password, the password is stored in the database in hash form, with the following code password_hash($password, PASSWORD_BCRYPT) Then, I have an application in Jav...
asked by 16.06.2017 / 15:23
2
answers

Compare numeric keypad combination with user bcrypt

Speaking people, I'm developing a numeric keypad just like banks, where the user selects a combination of numbers, but has to make a comparison with his stored password in bcrypt. The password is always 6 numeric digits (it gets easier, right?))...
asked by 10.04.2018 / 19:37
1
answer

Doubt on Null Byte in Bcrypt PHP

Well, I learned that PHP's Bcrypt is vulnerable to Null Byte. What tests do I have to do to see this vulnerability, and what are the constipations of this?     
asked by 04.03.2018 / 06:29
1
answer

jBCrypt remains secure?

I would like to know if jBCrypt is out of date because it has not updated for two years link If yes, would you have any replacement for hashs and salts for java?     
asked by 12.07.2014 / 09:07
1
answer

How does bcrypt work?

I do not quite understand how salt of bcrypt works, in a javascript (node) code: const bcrypt = require('bcrypt'); const saltRounds = 10; async function init(plainPassword) { let salt = await bcrypt.genSalt(saltRounds); conso...
asked by 30.05.2018 / 02:30
1
answer

Login with Play! framework

I'm trying to create a system login but I have the following problem: public Result salvaNovoUsuario() { Form<Usuario> formulario = formularios.form(Usuario.class).bindFromRequest(); if (validadorDeUsuario.temErros(formul...
asked by 27.06.2017 / 20:23
1
answer

Problems logging in using the crypt () function in PHP

I'm returning to the PHP world after a long winter. I took an example user registry that uses MD5 as the encryption standard and now I'm trying to login to a test user because I need to change the default to crypt (Blowfish). The password rec...
asked by 12.07.2017 / 01:34