search for: cryptobook

...et. That auth service could be built with Python for isolation from other services, high availability and relatively low memory footprint. It connects to the database, reads and updates the hashes and does all the crypto for its clients. Any suggestions about how to do that? Yves [1] https://cryptobook.nakov.com/mac-and-key-derivation/argon2 [2] https://github.com/tabrath/libsodium-core [3] https://passlib.readthedocs.io/en/stable/lib/passlib.hash.argon2.html -------- Urspr?ngliche Nachricht -------- Von: Aki Tuomi <aki.tuomi at open-xchange.com> Gesendet: Sonntag, 30. August 2020, 16:33...

...thon for isolation from other services, high availability and > relatively low memory footprint. It connects to the database, reads and > updates the hashes and does all the crypto for its clients. > > Any suggestions about how to do that? > > Yves > > > [1] https://cryptobook.nakov.com/mac-and-key-derivation/argon2 > [2] https://github.com/tabrath/libsodium-core > [3] https://passlib.readthedocs.io/en/stable/lib/passlib.hash.argon2.html > > > > -------- Urspr?ngliche Nachricht -------- > Von: Aki Tuomi <aki.tuomi at open-xchange.com> > G...

Hello, I'm setting up a new server and, again, seek for a decently secure (from a security specialist's POV) way to store and verify user passwords in a database. Additionally now, GDPR requires me to use a solid state-of-the-art solution. My OS is Ubuntu 20.04, Dovecot version 2.3.7, database backend with PostgreSQL 12. Obviously, storing the plaintext password is a terrible idea.