Conversation
@durumcrustulum is there some stable "just use libsodium for all your password hashing needs" website or is there some better advice these days. why is everything a mix of "just use argon2," "also, avoid scrypt!!," "scrypt is probably fine," "just anything but pbkdf2," and so forth, it's a real mixed bag imo given that auth is treated like a 'solved problem' (maybe because everyone delegates auth to other services like authio etc?) but maybe it's just solved since everyone uses nacl but all the docs haven't caught up?
0
1
0