You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
512f6de6de
* feat: allow passwords longer than 73 characters Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security by hashing all incoming passwords with SHA512, and then sending that to bcrypt. https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords * feat: add additional test for passwords > 73 chars * fix: remove 'password-too-long' error message and all invocations * test: added test to show that a super long password won't bring down NodeBB * fix: remove debug log * Revert "fix: remove 'password-too-long' error message and all invocations" This reverts commit 1e312bf7ef7e119fa0f1bd3517d756ca013d5e79. * fix: added back password length checks, but at 512 chars As processing a large string still uses a lot of memory |
5 years ago | |
|---|---|---|
| .. | ||
| jobs | 5 years ago | |
| admin.js | 5 years ago | |
| approval.js | 5 years ago | |
| auth.js | 5 years ago | |
| bans.js | 5 years ago | |
| blocks.js | 5 years ago | |
| categories.js | 6 years ago | |
| create.js | 5 years ago | |
| data.js | 5 years ago | |
| delete.js | 5 years ago | |
| digest.js | 5 years ago | |
| email.js | 5 years ago | |
| follow.js | 5 years ago | |
| index.js | 5 years ago | |
| info.js | 5 years ago | |
| invite.js | 5 years ago | |
| jobs.js | 6 years ago | |
| notifications.js | 5 years ago | |
| online.js | 5 years ago | |
| password.js | 5 years ago | |
| picture.js | 5 years ago | |
| posts.js | 5 years ago | |
| profile.js | 5 years ago | |
| reset.js | 5 years ago | |
| search.js | 5 years ago | |
| settings.js | 5 years ago | |
| topics.js | 6 years ago | |
| uploads.js | 5 years ago | |