Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

>It does not matter what hashing function you use for the login. It matters in case your database leaks.

That was my point... I suppose I'm not sure I understood why you brought up login entry point rate limiting?



Rate limiting makes it harder for people to DOS you using the password hash on your login form.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: