TheDoggyBrad Software Lab
Posted in General Discussion 11 months ago
When I was browsing lianglee's (Arsalan Shah) github repository. This component caught the attention of my eye.
https://github.com/opensource-socialnetwork/Argon2iPassword
Is this thing still working or is it implemented in the core of OSSN 7?
I seen something similar in the OSSN Documentation:
https://www.opensource-socialnetwork.org/documentation/view/5534/user-password-algorithm
•Argon2i is optimized to resist side-channel attacks. It accesses the memory array in a password independent order. (2015)
-Wikipedia
•bcrypt is a password-hashing function designed by Niels Provos and David Mazières, based on the Blowfish cipher and presented at USENIX in 1999.
-Wikipedia
Supported algorithms are md5 OSSN v5.x, bcrypt, argon2i. Default is bcrypt.
-OSSN Documentation
My question here is that can I simply switch my whole OSSN installation's hashing algorithm from bcrypt to Argon2i using this component and switch all the current users's passwords from bcrypt to Argon2i. Or if I installed the component only the new users will only use the Argon2i.
Note: I have 0% knowledge on about passwords.
TheDoggyBrad Software Lab
Replied 11 months ago
ok
Arsalan Shah
Replied 11 months ago
Just leave default behavior don't use it
TheDoggyBrad Software Lab
Replied 11 months ago
Or is it still better to still use bcrypt than Argon2i? or Argon2i is better than bcrypt.
Note: As I mentioned earlier, I have no knowledge about the encryption of passwords.
Due to the many requests in the past for additonal features and components we have decided to develope a premium version. Features like Hashtags, Videos, Polls, Events, Stories, Link Preview, etc included in it.
$199 (Life Time)
