Ok, got it. Thanks. Yes, much better. I was under the impression bcrypt was also... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		al_james on June 7, 2012 \| parent \| context \| favorite \| on: Md5crypt is no longer strong enough Ok, got it. Thanks. Yes, much better. I was under the impression bcrypt was also a fixed cost operation. If anyone else is wondering how to implement bcrypt with a cost parameter in PHP, see http://php.net/manual/en/function.crypt.php under CRYPT_BLOWFISH.

estel on June 7, 2012 [–]

It's probably prudent for most developers to instead use phpass [0] rather than attempt to roll their own implementation.

[0] http://www.openwall.com/phpass/

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact