> > Also, be aware that BCrypt only uses the first 72 characters of the > password field. So if you use a hex encoded sha512 output, a good deal > of entropy would be lost (almost half of it)... >
Good to know, do most hash algorithms have limitations on the # of chars as input? That would explain why (password || key) into a hash function has limitations. -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
