> > I think the point is, if a cracker has a security database, it can run
> > billions of SHA1 hashes per second using the same salt in a brute
> > force attack, because SHA1 is a fast (suitable to hash large files)
> > algorithm.
> >
> > With bcrypt, with is purposely slow, the cracker can't
[
http://tracker.firebirdsql.org/browse/CORE-5570?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Adriano dos Santos Fernandes reopened CORE-5570:
Fix Version/s: (was: 4.0 Alpha 1)
(was:
Adriano, could you upload to https://github.com/FirebirdSQL the source code
of ICU from FB3?
Thanks,
Dmitry Kovalenko
www.ibprovider.com
--
Check out the vibrant tech community on one of the world's most
engaging
On 21.07.2017 14:43, Adriano dos Santos Fernandes wrote:
On 21/07/2017 08:00, Alex via Firebird-devel wrote:
Mark, this is interesting. I know bcrypt is very used by nodejs/expess
people and I even used it myself.
But what is more interesting, isn't Firebird still using these "not
suitable
On 21/07/2017 08:00, Alex via Firebird-devel wrote:
>>>
>> Mark, this is interesting. I know bcrypt is very used by nodejs/expess
>> people and I even used it myself.
>>
>> But what is more interesting, isn't Firebird still using these "not
>> suitable for passwords" hashes in recent versions?
>>
On 21.07.2017 13:38, Adriano dos Santos Fernandes wrote:
On 19/07/2017 15:51, Mark Rotteveel wrote:
In most cases original string (password) is not even stored and hashes
are used to check if a password matches a previously one.
The proposed hashes are **not** suitable for passwords; you
On 21.07.2017 11:08, Jiří Činčura wrote:
Hi *,
is there a way to get attachement_id (the same as in mon$attachments)
from IAttachment isntance?
Certainly.
Use isc_info_attachment_id in IAttachment::getInfo().
--
On 19/07/2017 15:51, Mark Rotteveel wrote:
>
>>
>> In most cases original string (password) is not even stored and hashes
>> are used to check if a password matches a previously one.
>
> The proposed hashes are **not** suitable for passwords; you shouldn't
> use a pure cryptographic hash for
Hi *,
is there a way to get attachement_id (the same as in mon$attachments)
from IAttachment isntance?
--
Mgr. Jiří Činčura
https://www.tabsoverspaces.com/
--
Check out the vibrant tech community on one of the world's