]> git.ipfire.org Git - thirdparty/openldap.git/commitdiff
projects / thirdparty / openldap.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1fc0971)
ITS#9827 - Use 7MB memory/5 iterations as default
authorQuanah Gibson-Mount <quanah@openldap.org>
Tue, 11 Jun 2024 17:06:33 +0000 (17:06 +0000)
committerQuanah Gibson-Mount <quanah@openldap.org>
Tue, 11 Jun 2024 17:06:33 +0000 (17:06 +0000)
This has the same protections as 19MB/2 iterations, but requires less system memory

servers/slapd/pwmods/argon2.c patch | blob | blame | history

diff --git a/servers/slapd/pwmods/argon2.c b/servers/slapd/pwmods/argon2.c
index a9a19ee81de995e70e6420a72aefa3e247d28326..d3cccffb08cfe0f6b130f81f337e4659fd448b25 100644 (file)
--- a/servers/slapd/pwmods/argon2.c
+++ b/servers/slapd/pwmods/argon2.c
@@ -32,8 +32,8 @@
  * Use OWASP recommended values (retrieved on 2023-08-07)
  * @see https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html
  */
-#define SLAPD_ARGON2_ITERATIONS 2
-#define SLAPD_ARGON2_MEMORY 19456
+#define SLAPD_ARGON2_ITERATIONS 5
+#define SLAPD_ARGON2_MEMORY 7168
 #define SLAPD_ARGON2_PARALLELISM 1
 #define SLAPD_ARGON2_SALT_LENGTH 16
 #define SLAPD_ARGON2_HASH_LENGTH 32
Mirror of https://git.openldap.org/openldap/openldap.git