Actions
Feature #30
closedadd option to configure hash type for CTP and SLP generation
Description
this should improve protection against dictionary attacks if someone was able to keylogg/sniff both, the OTP and the CTP
- we should split e.g. a 128 char hash into four 32 char strings and choose a random one for CTP/SLP creation
- this should be configurable per client because some clients may not support any hash type (e.g. sha512)
Updated by The 2nd over 8 years ago
implemented for CTPs now. SLP is less important but may follow later...
Actions