##// END OF EJS Templates
security: limit the maximum password lenght to 72 characters to prevent possible...
security: limit the maximum password lenght to 72 characters to prevent possible server side resource consumption attack. - bcrypt heavy computation can lead to DOS using a very long password .eg 10**8 lenght. - we allowed this on registration or on password update
ergo -
r2192:a51e727d stable
Show More
Name Size Modified Last Commit Author
/ rhodecode / lib / middleware
utils
__init__.py Loading ...
appenlight.py Loading ...
csrf.py Loading ...
error_handling.py Loading ...
https_fixup.py Loading ...
request_wrapper.py Loading ...
simplegit.py Loading ...
simplehg.py Loading ...
simplesvn.py Loading ...
simplevcs.py Loading ...
vcs.py Loading ...