O'Reilly logo
  • Rajnesh tripathi thinks this is interesting:

There are still problems with straight hashing like rainbow tables or brute-force attacks. The best solution today for dealing with passwords is BCrypt. BCrypt is a hashing algorithm that is intentionally slow, making brute-force attacks too expensive to do.

Like JWT, it’s not really important to understand how it works, just how to use it. To find the bcrypt hash of your pass password, you can calculate it inside a Node console: