Bcrypt password hashing in Nodejs:
https://www.npmjs.com/package/bcrypt-nodejs
It’s important to hash passwords so, if your database is somehow leaked, the attacker can’t retrieve user passwords. Bcrypt is better than MD5 because it is designed to be memory bound and thus much more difficult to brute force. Bcrypt can also have its complexity increased to a configurable level such that it is even more difficult to brute force.
Leave a Reply