##// END OF EJS Templates
security: limit the maximum password lenght to 72 characters to prevent possible...
security: limit the maximum password lenght to 72 characters to prevent possible server side resource consumption attack. - bcrypt heavy computation can lead to DOS using a very long password .eg 10**8 lenght. - we allowed this on registration or on password update
ergo -
r2128:f22a9ea9 default
Show More
Name Size Modified Last Commit Author
/ rhodecode / model
validation_schema
__init__.py Loading ...
auth_token.py Loading ...
changeset_status.py Loading ...
comment.py Loading ...
db.py Loading ...
forms.py Loading ...
gist.py Loading ...
integration.py Loading ...
meta.py Loading ...
notification.py Loading ...
permission.py Loading ...
pull_request.py Loading ...
repo.py Loading ...
repo_group.py Loading ...
repo_permission.py Loading ...
scm.py Loading ...
settings.py Loading ...
ssh_key.py Loading ...
supervisor.py Loading ...
user.py Loading ...
user_group.py Loading ...
validators.py Loading ...