I'm currently trying it and it seems quite easy to load and use - just
working fine.
Of couse it seems kinda slow in comparison with native implementations (2000
iterations of SHA256 into 32 byte hash taking almost a second on my quite
powerful PC), but that's expected and not that much of a
Ah, it seems I just did not switched it on - it does not work after all.
I tried it with PasswordHashingFFI-PaulDeBrulcker.16.mcz, but also with 15
and 8.
On Pharo 5, it calls many methods which I do not have in my environment, for
example in BCryptLinuxFFI>>#generateBCryptSalt: there is line
Thank you a lot! :)
I tried it in Pharo 5 and everything seems to be working (I just had to
apt-get install libxcrypt:i386, load packages Cryptography, Blowfish (not
sure if really needed though) and PasswordHashingFFI and manually create
link in directory where it expected libxcrypt.so.1). About
And to add scrypt to that FFI library would be trivial if you have a 32bit
version of scrypt but I don't think there is one. I'd be happy to learn I'm
wrong though. And thats assuming you're using 32 bit pharo, which is whats
stable/released right now.
Paul DeBruicker wrote
> I made a
I made a crypt/bcrypt ffi library for older versions of Pharo that sounds
like it meets your needs and is in the cryptography project here:
http://smalltalkhub.com/#!/~Cryptography/Cryptography
But I have not updated it for the new FFI versions in Pharo 5/6.
And Pierce Ng made a blog post
>I require at least bcrypt or PDKBF2, but I much more prefer
>GPU-attack-resistant solutions like scrypt or Argon2.
If required you can use external libraries like scrypt
(https://lolware.net/2014/04/29/libscrypt.html)
and call it using UFFI from Pharo
Thanks
T.
Hello
I'm working on Pharo-based webserver and right now I got to the topic of
storing user passwords. I found SHA256 integrated in Pharo, but hashing with
SHA is far from enough. I also looked around the mailing list history to
find few posts from 2011 about bcrypt using Linux libraries. I'd
