Skip to content

nathanaelle/password

Repository files navigation

password

License Go Doc Build Status Go Report Card

Implemented schemas

Safe schemas

Unsafe schemas

  • MD5-CRYPT $1$
  • APR1 $apr1$

BLF-CRYPT apparent mess

BCrypt algorithm is secure but there was flaws in few implementations. This is the summary of the explanation of the different flavors of bcrypt :

  • $2$ may be produced by a buggy version who doesn't cope with UNICODE
  • $2x$ is the PHP name for buggy $2$
  • $2y$ is the PHP name of $2a$
  • $2b$ is the bcrypt prefix used in OpendBSD for the corrected version of $2a$ (password length was limited to 255 bytes)

License

BSD-2