๐Ÿ”
Security

Password hashing: bcrypt, argon2

09.03.2025
โ† All articles

MD5/SHA-1 obsolete. Today โ€” modern hashing.

Why just hash isn't enough

Rainbow tables, brute force GPU.

bcrypt

Slow โ€” brute force hard. Cost 12-14.

PHP

password_hash($pass, PASSWORD_BCRYPT).

Argon2

PHC winner. PASSWORD_ARGON2ID.

Salt

Automatic.

Pepper

In .env, not DB.

2FA

Always add.

Related articles

๐Ÿ” Password managers โ€” choosing between Bitwarden, 1Password, LastPass and KeePass ๐Ÿฏ Honeypot โ€” hidden form field that catches bots and stops spam ๐Ÿ“„ /.well-known/security.txt โ€” security contact standard ๐Ÿ“‹ GDPR Compliance โ€” obligations for protecting European citizens' data
๐ŸŒ Language
๐Ÿ‡บ๐Ÿ‡ฟ O'zbek ๐Ÿ‡บ๐Ÿ‡ฟ ะŽะทะฑะตะบ ๐Ÿ‡ท๐Ÿ‡บ ะ ัƒััะบะธะน ๐Ÿ‡ฌ๐Ÿ‡ง English โœ“