Manuel Urueña
@muruenya.bsky.social
Security Architect at Redeia. Entropy fighter.
@muruenya@infosec.exchange
@muruenya@infosec.exchange
Reposted by Manuel Urueña
Weird, as you will use a hash function which gives a fixed length output to store. Could be many reasons.
Bcrypt has a 72 char limit.
Django released patches back in 2013 that reduced max pwd length to 4095 chars (!), for good reasons: Pwd auth DoS attack.
www.helpnetsecurity.com/2013/09/17/t...
Bcrypt has a 72 char limit.
Django released patches back in 2013 that reduced max pwd length to 4095 chars (!), for good reasons: Pwd auth DoS attack.
www.helpnetsecurity.com/2013/09/17/t...
Too long passwords can DoS some servers - Help Net Security
The discovery of a vulnerability in popular open source web application framework Django has recently demonstrated that using a long password is not
www.helpnetsecurity.com
August 14, 2025 at 7:24 PM
Weird, as you will use a hash function which gives a fixed length output to store. Could be many reasons.
Bcrypt has a 72 char limit.
Django released patches back in 2013 that reduced max pwd length to 4095 chars (!), for good reasons: Pwd auth DoS attack.
www.helpnetsecurity.com/2013/09/17/t...
Bcrypt has a 72 char limit.
Django released patches back in 2013 that reduced max pwd length to 4095 chars (!), for good reasons: Pwd auth DoS attack.
www.helpnetsecurity.com/2013/09/17/t...
Reposted by Manuel Urueña
Background info if you've no idea wtf I'm talking about:
blogs.microsoft.com/on-the-issue...
blogs.microsoft.com/on-the-issue...
Disrupting Lumma Stealer: Microsoft leads global action against favored cybercrime tool
Microsoft and partners disrupted Lumma Stealer, malware used to steal data and enable cybercrime. Legal action was filed on May 13 by Microsoft DCU
blogs.microsoft.com
May 21, 2025 at 5:19 PM
Background info if you've no idea wtf I'm talking about:
blogs.microsoft.com/on-the-issue...
blogs.microsoft.com/on-the-issue...