Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
avinassh
on Jan 24, 2023
|
parent
|
context
|
favorite
| on:
Bitwarden design flaw: Server side iterations
Why is the iteration needed if I choose sufficiently strong passphrase? Think 40 characters
masklinn
on Jan 24, 2023
|
next
[–]
If your password is very long
and
randomly generated
and
not used anywhere else then probably not. But it doesn’t hurt.
The iterations count regulates how fast an attacker can check a guess of the clear text.
zeroonetwothree
on Jan 24, 2023
|
prev
[–]
It's not really needed if your password has a lot of entropy. 40 random characters is like 256 bits or something so that's crazy overkill and would be safe regardless of how many iterations.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
