A Senior Developer working mostly with PHP and JavaScript, with a bit of Python thrown in for good measure, all on Linux. My tooling is simple, it's GitLab and JetBrains where possible.
What should be limited to 60 characters? Passwords? That severely limits passphrase usage - they are better than traditional passwords as they are inherently longer and harder to break. If you mean emails, the RFC standard for an email address is 254 characters. Whilst there's very little demand or actual use for a length of that size, a limit to 60 might limit some people (unlikely, but still should be aware of it.
As for MD5 for passwords. Don't. MD5 is broken. It's stupidly fast to evaluate so silly numbers of hashes can be computed in seconds, even on arbitrary hardware.
The important lesson to take from any form of SQL injection discussion is never trust user input
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
What should be limited to 60 characters? Passwords? That severely limits passphrase usage - they are better than traditional passwords as they are inherently longer and harder to break. If you mean emails, the RFC standard for an email address is 254 characters. Whilst there's very little demand or actual use for a length of that size, a limit to 60 might limit some people (unlikely, but still should be aware of it.
As for MD5 for passwords. Don't. MD5 is broken. It's stupidly fast to evaluate so silly numbers of hashes can be computed in seconds, even on arbitrary hardware.
The important lesson to take from any form of SQL injection discussion is never trust user input