It's Open Source! - eviltoast

Not discrediting Open Source Software, but nothing is 100% safe.

  • Distributed@lemmy.ml
    link
    fedilink
    English
    arrow-up
    5
    ·
    1 year ago

    prioritizing profit over security

    Laughs, nervously, while looking at my company’s auth db, which uses sha-256 still lol…

    • andrew@lemmy.stuart.fun
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      It never should have been anything but bcrypt/scrypt, but sha256 is so much better than many alternatives. Hopefully it’s at least salted in addition to hashing.