Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/tychotithonus/statuses/113551157888943111">Royce Williams (tychotithonus@infosec.exchange)'s status on Wednesday, 27-Nov-2024 17:25:40 JST</a><a href="https://infosec.exchange/@tychotithonus" title="tychotithonus@infosec.exchange"><img src="https://gnusocial.jp/avatar/92920-48-20240902162501.webp" width="48" height="48" alt="Royce Williams" style="position: absolute; left: 0; top: 0;">Royce Williams</a><div><a href="https://fedi.mischivous.com/objects/23f07674-55e6-4f68-b4ec-2258cb7abd02" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/300711" title="mischif@fedi.mischivous.com">Jeremy</a></li></ul></div></section><article><p><a href="https://fedi.mischivous.com/users/mischif" rel="nofollow noreferrer">@mischif</a> </p><p>(Specifically, bcrypt is better with high user counts, where users can't tolerate high authentication latency. If you have only a few users, and/or they can tolerate authentication lag above a thousand milliseconds ... and you can handle a thundering herd of those ... Argon2, tuned higher, becomes better.)</p><p><a href="https://furry.engineer/@soatok" rel="nofollow noreferrer">@soatok</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4079172#notice-7970904">In conversation</a><time datetime="2024-11-27T17:25:40+09:00" title="Wednesday, 27-Nov-2024 17:25:40 JST">about 2 months ago</time> <span>from <span><a href="https://infosec.exchange/@tychotithonus/113551157888943111" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@tychotithonus/113551157888943111">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Wednesday, 27-Nov-2024 17:25:40 JSTRoyce Williams
in reply to
- Soatok Dreamseeker
- Jeremy
@mischif
(Specifically, bcrypt is better with high user counts, where users can't tolerate high authentication latency. If you have only a few users, and/or they can tolerate authentication lag above a thousand milliseconds ... and you can handle a thundering herd of those ... Argon2, tuned higher, becomes better.)
@soatok
In conversationabout 2 months ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice