Discussion : Password Storage

Currently, we are using Cakephp 3.x DefaultPasswordHasher() for storing passwords.

We are planning to implement method discuss in this article https://nakedsecurity.sophos.com/2013/11/20/serious-security-how-to-store-your-users-passwords-safely/.

If Cakephp DefaultPasswordHashers() is not quite strong, then we can discuss the method to replace it.

Source: #107 (comment 348559111)

Linked Issues

1. #107 (closed)

PS: We had a discussion on #107 (closed), please first go through it too.