##// END OF EJS Templates
security: limit the maximum password lenght to 72 characters to prevent possible...
security: limit the maximum password lenght to 72 characters to prevent possible server side resource consumption attack. - bcrypt heavy computation can lead to DOS using a very long password .eg 10**8 lenght. - we allowed this on registration or on password update
ergo -
r2128:f22a9ea9 default
Show More
Name Size Modified Last Commit Author
/ rhodecode / config
hook_templates
__init__.py Loading ...
conf.py Loading ...
deployment.ini_tmpl Loading ...
environment.py Loading ...
jsroutes.py Loading ...
licenses.json Loading ...
middleware.py Loading ...
patches.py Loading ...
routing.py Loading ...
routing_links.py Loading ...
utils.py Loading ...