hi, On Mon, Jun 18, 2012 at 11:06 AM, Alexey Zakhlestin <indey...@gmail.com> wrote:
> The post says, that SCrypt is better, because it is way harder to solve. > Bcrypt requires a lot of CPU, but SCrypt requires a lot of CPU + a lot of RAM Ah right, I read it the other way 'round... >>> It is BSD-licensed, so we can easily bundle it with PHP >> >> Maybe nice to have in pecl.' > > Sure, that's an option, but pecl won't help php to have default > "state-of-art" password hashing toolset ;) There is sadly only state-of-art-right-now password hashing methods. We have to keep that in mind :) Cheers, -- Pierre @pierrejoye | http://blog.thepimp.net | http://www.libgd.org -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
