[openssl-users] Encryption length, OpenSSL_add_all_algorithms, and OpenSSL_add_all_ciphers questions
Richard Moore
richmoore44 at gmail.com
Thu Mar 26 22:46:13 UTC 2015
On 26 March 2015 at 14:53, Philip Bellino <pbellino at mrv.com> wrote:
> I am using OpenSSL-1.0.2a EVP routines to encrypt and decrypt passwords
>
> with cipher des_ede3_cbc as follows:
>
>
>
Your design is fundamentally flawed. You should be hashing passwords using
bcrypt, pbkdf or similar not encrypting them.
Regards
Rich.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150326/a7b2ff7f/attachment.html>
More information about the openssl-users
mailing list