undefined | Better HN

0 pointscwbriscoe4mo ago0 comments

You could always pre-hash the password with sha256 or something similar to guarantee you won't go over the 72 byte limit.

0 comments

I don't understand why this isn't a mandatory first step in the bcrypt algorithm itself. Who thought that a 72 byte limit was a good idea?

j / k navigate · click thread line to collapse

0 pointscwbriscoe4mo ago0 comments

You could always pre-hash the password with sha256 or something similar to guarantee you won't go over the 72 byte limit.

I don't understand why this isn't a mandatory first step in the bcrypt algorithm itself. Who thought that a 72 byte limit was a good idea?

j / k navigate · click thread line to collapse