[openssl-users] Encryption length, OpenSSL_add_all_algorithms, and OpenSSL_add_all_ciphers questions

Richard Moore richmoore44 at gmail.com
Thu Mar 26 22:46:13 UTC 2015


On 26 March 2015 at 14:53, Philip Bellino <pbellino at mrv.com> wrote:

>  I am using OpenSSL-1.0.2a EVP routines to encrypt and decrypt passwords
>
> with cipher des_ede3_cbc as follows:
>
>
>
Your design is fundamentally flawed. You should be hashing passwords using
bcrypt, pbkdf or similar not encrypting them.

Regards

Rich.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150326/a7b2ff7f/attachment.html>


More information about the openssl-users mailing list