I was about to do the same and do some measurements to back my words up, but got distracted. I'm strongly in a favor of increasing number of rounds at least to 2^8. Solar Designer uses this number of rounds in Openwall for quite some time now.
On Thu, Dec 16, 2010 at 5:42 AM, Bob Beck <[email protected]> wrote: > I don't mind this if the eventual goal is to think about diddling with > it per arch.. > > I certainly do NOT want a 2^11 blowfish password when logging into my sparc > > > On 15 December 2010 21:33, Ted Unangst <[email protected]> wrote: >> On Wed, 15 Dec 2010, Ted Unangst wrote: >> >>> These values have not marched forward with the progress of time. For >>> perspective, the last increase in bcrypt rounds was around the time we >>> considered Monica Lewinsky a big scandal. >> >> OK, so let's table what the right values and just make the values >> configurable. Then we can discuss moving up (or even down).
