Implement "bcrypt+SHA256" as default algorithm (independent to straight bcrypt).

Question

Implement "bcrypt+SHA256" as default algorithm (independent to straight bcrypt).

Opened this issue 12 years ago · 0 comments

The straight implementation of bcrypt only uses the first 72 characters of a passphraase. Whilst this is sufficient for most needs, it would also make sense to pre-hash with SHA-2 to use the full passphraase, and make this the default option. (The straight bcrypt option would remain available for compatibility with other implementations).