http://bcrypt.codeplex.com/discussionsbcrypt Discussions Rss Descriptionhttp://bcrypt.codeplex.com/discussions/286911<div style="line-height: normal;"> <p>this might be a year late but here's a good explanation why.&nbsp;</p> <p>&nbsp;</p> <p><a title="http://stackoverflow.com/questions/5393803/can-someone-explain-how-bcrypt-verifies-a-hash" href="http://stackoverflow.com/questions/5393803/can-someone-explain-how-bcrypt-verifies-a-hash" target="_blank">http://stackoverflow.com/questions/5393803/can-someone-explain-how-bcrypt-verifies-a-hash</a></p> </div>TLMTue, 29 Jan 2013 08:47:24 GMTNew Post: No hashing of salt, string, workload? 20130129084724Ahttp://bcrypt.codeplex.com/discussions/352718<div style="line-height: normal;"><p>Same here.</p> <p>Is the idea that the source code cannot contain the key (maybe defeating the purpose of signing altogether), then maybe it would be an idea to ship the binaries with signed dlls, but keep the key out of the source, just for convenience?</p> <p>For now compilation with my own key seems to be the way to go.</p></div>AtrejoeFri, 08 Jun 2012 09:58:09 GMTNew Post: Strong Name Signing 20120608095809Ahttp://bcrypt.codeplex.com/discussions/352718<div style="line-height: normal;"> <p>I'm trying to use this in a VS2010 VB project but because I have the project signed with a strong name every assembly must also be signed with a strong name. &nbsp;Is it possible for the next version to be signed with a strong name so I can use it in my project?</p> </div>DonLaffertyWed, 18 Apr 2012 17:10:43 GMTNew Post: Strong Name Signing 20120418051043Phttp://bcrypt.codeplex.com/discussions/286911<div style="line-height: normal;"> <p>The docs don't seem to be right here.</p> <p>1.&nbsp;<span id="nsrTitle">BCrypt<span><span>.</span><span>.</span><span>::</span><span>.</span><span>.</span></span>HashPassword Method (String, Int32)</span></p> <p><span></p> <div>Hash a password using the OpenBSD bcrypt scheme and a salt generated by <a href=""> GenerateSalt(Int32)</a> using the given <span>workFactor</span>.&nbsp;</div> </span> <p></p> <p><span>This seems to not be correct &nbsp;since there is no salt provided as a parameter for this overload.</span></p> <p><span>Whats the use of having a work factor here but no salt? Ideally you want to provide the salt, text, and work factor to slow the computation time down.</span></p> <p><span>Sure you can set the work factor when generating the salt, but if the salt is already generated, you would likely want to use it when a user types in a password for validation AND include a work factor to slow brute forcing down - the whole purpose as I would see it for the work factor to exist?</span></p> <p>&nbsp;</p> <p>Thoughts?</p> <p>Thanks!</p> <p>&nbsp;</p> <p>&nbsp;</p> <p><span><br> </span></p> </div>adamtuliperSat, 21 Jan 2012 07:48:09 GMTNew Post: No hashing of salt, string, workload? 20120121074809Ahttp://bcrypt.codeplex.com/discussions/262570<div style="line-height: normal;"><p>Check the answers (especially the one from GalacticJello) on</p> <p><a href="http://stackoverflow.com/questions/6460711/adding-a-custom-hashalgorithmtype-in-c-asp-net">http://stackoverflow.com/questions/6460711/adding-a-custom-hashalgorithmtype-in-c-asp-net</a></p> <p>&nbsp;</p> <p>Kind regards,&nbsp;</p> <p>Amanuel</p></div>mammoThu, 14 Jul 2011 14:01:33 GMTNew Post: .NET Membership Provider 20110714020133Phttp://bcrypt.codeplex.com/discussions/262570<div style="line-height: normal;"> <p>OK so I'm a bit of a noob when it comes to such things, but is there any way to set this library up so that I can specify hashAlgorithmType=&quot;BCrypt&quot; in my web.config's &lt;membership&gt; section?</p> <p>If so, you might consider including it in future sample code releases as it would make including BCrypt.Net into existing projects much easier when such projects are using ASP.NET's built-in Membership Provider.</p> <p>&nbsp;</p> <p>Thanks,</p> <p>David Perry</p> </div>enmakuThu, 23 Jun 2011 21:48:14 GMTNew Post: .NET Membership Provider 20110623094814P