Re: Storing passwords

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Storing passwords
From: Miles Bader <miles@...>
Date: Tue, 22 May 2012 16:37:17 +0900

steve donovan <steve.j.donovan@gmail.com> writes:
>> No, don't use a bare hash for storing passwords. Use the standard
>> crypt() function, or if you want to be even safer use bcrypt or
>> scrypt.
>
> If you're already using luaposix, then it has the standard crypt()
> available.

... and if you're on a non-ancient version of linux (well, anything
using glibc), the standard crypt function supports sha-256 and sha-512
as well...

-miles

-- 
Innards, n. pl. The stomach, heart, soul, and other bowels.

References:
- Storing passwords, Paco Willers
- Re: Storing passwords, Philippe Lhoste
- Re: Storing passwords, Tony Finch
- Re: Storing passwords, steve donovan

Prev by Date: Re: Lua Workshop 2012 in Toulouse, France
Next by Date: Re: Is having lua_State per thread safe?
Previous by thread: Re: Storing passwords
Next by thread: Is having lua_State per thread safe?
Index(es):
- Date
- Thread