New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Argon2id should be the default #33
Comments
Hm yeah, I guess I’ll have to build hash flexibility (that’s the wrong word, isn’t it :)) into PasswordHasher and update the docs. |
Yep!
|
Yeah I’ll try to read myself thru the RFC on the weekend. I’ve pinged Django about it too since they use the low-level functions. |
I have started working on that in #34 but I don’t think I’m comfortable to change the other default parameters . |
|
Currently
Argon2i
is used as the default algorithm. There are two published attacks against it. The recommended and primary variant ofArgon2
isArgon2id
(also default in libsodium).The text was updated successfully, but these errors were encountered: