Good summary, but this gave me pause: "[...] a cryptographically strong hash of the password that cannot be reversed — created with, for example, PBKDF2, SHA3, Scrypt, or Bcrypt". ... SHA3? Isn't that unsalted, and fast?
-
-
-
It’s a troll.
End of conversation
New conversation -
-
-
Replace SHA3 with Argon2i. Of course never never use a hash by itself for password storage.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.