On 26 March 2015 at 14:53, Philip Bellino <pbellino at mrv.com> wrote: > I am using OpenSSL-1.0.2a EVP routines to encrypt and decrypt passwords > > with cipher des_ede3_cbc as follows: > > > Your design is fundamentally flawed. You should be hashing passwords using bcrypt, pbkdf or similar not encrypting them. Regards Rich. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150326/a7b2ff7f/attachment.html>
