Last week, I tried to register for a service and was really surprised by a password limit of 16 characters. Why on earth yould you impose such strict limits? Never heard of correct horse battery staple?

  • chameleon@fedia.io
    link
    fedilink
    arrow-up
    10
    ·
    3 months ago

    bcrypt has a maximum password length of 56 to 72 bytes and while it’s not today’s preferred algo for new stuff, it’s still completely fine and widely used.

    • DaPorkchop_@lemmy.ml
      link
      fedilink
      arrow-up
      2
      ·
      3 months ago

      Wait, really? I always thought bcrypt was just a general-purpose hash algorithm, never realized that it had an upper data size limit like that.