All 25 Comments

re: How to Process Passwords as a Software Developer
Agreed, developer shouldn't even be doing the password hash...
re: How to Process Passwords as a Software Developer
Because it's easy to do SIM swam scams, spoof phone numbers...
re: How to Process Passwords as a Software Developer
Great question! That's an extremely good idea, although I h...
re: How to Process Passwords as a Software Developer
Thank you. Unfortunately, someone has to do it. I'm certain...
re: How to Process Passwords as a Software Developer
Would you care to share if this is good, bad, and why we sh...
re: How to Process Passwords as a Software Developer
I think it's a good idea, as I suggested in the article. ...
re: How to Process Passwords as a Software Developer
You're welcome! And yes, developers do that. "Pepper" is ju...
re: How to Process Passwords as a Software Developer
Thanks! I'll be sure to add that.
re: Message Encryption in JavaScript and PHP
This is great! I'm glad to see libsodium making its way int...
re: How to Process Passwords as a Software Developer
Thank you! If you enforce that character set, you run the...
re: How to Process Passwords as a Software Developer
Thank you! And yes, length(more so) and entropy are what ma...
re: How to Process Passwords as a Software Developer
I agree with you! However, solutions like SQRL seem like a ...
re: How to Process Passwords as a Software Developer
Glad to help. :)
re: 🦀 Rust for JS developers
Great article, and that YouTube channel is amazing!
re: It's nice to be nice! - Code Reviews
I really like this, as a junior developer myself, it's very...
re: How I Fixed JWT Security Flaws in 3 Steps
This is a beautifully written article about JWTs. Kudos to ...
re: Q Vault: An open source secret manager
I've tried searching, but I can't seem to find anything abo...
re: Q Vault: An open source secret manager
Oh. That's great to hear! FYI, Qvault looks nice. Do you th...
re: Q Vault: An open source secret manager
I agree with both of you, however I think having additional...
re: Q Vault: An open source secret manager
Actually, I disagree, salts are used to prevent rainbow tab...
re: Open Source is Broken
Take Tor Project for example, how are we going to weed out ...
re: Open Source is Broken
Really interesting article. Do you think there is anyway we...
re: Token vs Session Authentication
And please take note, don't confuse developers who don't kn...
re: Token vs Session Authentication
I say that session cookies are more secure than JWTs. You s...
re: SQRL Poised To Save Us From Password Hell
I don't think that SQRL is prone to phishing. It generates ...
loading...