Just take the string as bytes and hash it ffs

  • expr@programming.dev
    link
    fedilink
    English
    arrow-up
    57
    ·
    4 months ago

    At minimum you need to limit the request size to avoid DOS attacks and such. But obviously that would be a much larger limit than anyone would use for a password.