TheDoggyBrad Software Lab
Posted in General Discussion 1 year ago
When I was browsing lianglee's (Arsalan Shah) github repository. This component caught the attention of my eye.
https://github.com/opensource-socialnetwork/Argon2iPassword
Is this thing still working or is it implemented in the core of OSSN 7?
I seen something similar in the OSSN Documentation:
https://www.opensource-socialnetwork.org/documentation/view/5534/user-password-algorithm
•Argon2i is optimized to resist side-channel attacks. It accesses the memory array in a password independent order. (2015)
-Wikipedia
•bcrypt is a password-hashing function designed by Niels Provos and David Mazières, based on the Blowfish cipher and presented at USENIX in 1999.
-Wikipedia
Supported algorithms are md5 OSSN v5.x, bcrypt, argon2i. Default is bcrypt.
-OSSN Documentation
My question here is that can I simply switch my whole OSSN installation's hashing algorithm from bcrypt to Argon2i using this component and switch all the current users's passwords from bcrypt to Argon2i. Or if I installed the component only the new users will only use the Argon2i.
Note: I have 0% knowledge on about passwords.
TheDoggyBrad Software Lab
Replied 1 year ago
ok
Arsalan Shah
Replied 1 year ago
Just leave default behavior don't use it
TheDoggyBrad Software Lab
Replied 1 year ago
Or is it still better to still use bcrypt than Argon2i? or Argon2i is better than bcrypt.
Note: As I mentioned earlier, I have no knowledge about the encryption of passwords.
Due to the many requests in the past for additonal features and components we have decided to develope a premium version. Features like Hashtags, Videos, Polls, Events, Stories, Link Preview, etc included in it.
$199 (Life Time)
