home.social

#argon2id — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #argon2id, aggregated by home.social.

  1. Три архитектурных решения для multi-tenant B2B SaaS, о которых я пожалел, что не узнал раньше

    Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку: TENANT_ID = “tenant-1” в config.py . Полтора дня поиска бага показали, почему multi-tenant архитектуру нужно закладывать с первого коммита. Разбор трёх архитектурных решений для multi-tenant SaaS в регулируемой отрасли — tenant_id helper, PostgreSQL EXCLUDE USING gist против double-booking, 152-ФЗ как код на FastAPI и SQLAlchemy.

    habr.com/ru/articles/1033488/

    #multitenant #fastapi #postgresql #sqlalchemy #exclude_using_gist #argon2id #pbkdf2 #152фз #audit_log #b2b_saas

  2. Три архитектурных решения для multi-tenant B2B SaaS, о которых я пожалел, что не узнал раньше

    Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку: TENANT_ID = “tenant-1” в config.py . Полтора дня поиска бага показали, почему multi-tenant архитектуру нужно закладывать с первого коммита. Разбор трёх архитектурных решений для multi-tenant SaaS в регулируемой отрасли — tenant_id helper, PostgreSQL EXCLUDE USING gist против double-booking, 152-ФЗ как код на FastAPI и SQLAlchemy.

    habr.com/ru/articles/1033488/

    #multitenant #fastapi #postgresql #sqlalchemy #exclude_using_gist #argon2id #pbkdf2 #152фз #audit_log #b2b_saas

  3. Три архитектурных решения для multi-tenant B2B SaaS, о которых я пожалел, что не узнал раньше

    Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку: TENANT_ID = “tenant-1” в config.py . Полтора дня поиска бага показали, почему multi-tenant архитектуру нужно закладывать с первого коммита. Разбор трёх архитектурных решений для multi-tenant SaaS в регулируемой отрасли — tenant_id helper, PostgreSQL EXCLUDE USING gist против double-booking, 152-ФЗ как код на FastAPI и SQLAlchemy.

    habr.com/ru/articles/1033488/

    #multitenant #fastapi #postgresql #sqlalchemy #exclude_using_gist #argon2id #pbkdf2 #152фз #audit_log #b2b_saas

  4. Три архитектурных решения для multi-tenant B2B SaaS, о которых я пожалел, что не узнал раньше

    Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку Самая дорогая ошибка моего B2B SaaS имела ровно одну строчку: TENANT_ID = “tenant-1” в config.py . Полтора дня поиска бага показали, почему multi-tenant архитектуру нужно закладывать с первого коммита. Разбор трёх архитектурных решений для multi-tenant SaaS в регулируемой отрасли — tenant_id helper, PostgreSQL EXCLUDE USING gist против double-booking, 152-ФЗ как код на FastAPI и SQLAlchemy.

    habr.com/ru/articles/1033488/

    #multitenant #fastapi #postgresql #sqlalchemy #exclude_using_gist #argon2id #pbkdf2 #152фз #audit_log #b2b_saas

  5. Argh, sucks. #Picocrypt is (was) a nice little tool for encrypting files and folders in Go with #XChaCha20 and #Argon2id. Thanks for the hard work.

    > I originally intended to work in the software engineering industry, but seeing the complete disregard for high quality code, overpowering greed and hype, and the layoffs that follow from it, I am shifting into academic research instead. [1]

    **I'm archiving Picocrypt** [2]

    [1]: github.com/Picocrypt/Picocrypt
    [2]: discuss.privacyguides.net/t/im

    #Encryption

  6. Argh, sucks. #Picocrypt is (was) a nice little tool for encrypting files and folders in Go with #XChaCha20 and #Argon2id. Thanks for the hard work.

    > I originally intended to work in the software engineering industry, but seeing the complete disregard for high quality code, overpowering greed and hype, and the layoffs that follow from it, I am shifting into academic research instead. [1]

    **I'm archiving Picocrypt** [2]

    [1]: github.com/Picocrypt/Picocrypt
    [2]: discuss.privacyguides.net/t/im

    #Encryption

  7. Argh, sucks. #Picocrypt is (was) a nice little tool for encrypting files and folders in Go with #XChaCha20 and #Argon2id. Thanks for the hard work.

    > I originally intended to work in the software engineering industry, but seeing the complete disregard for high quality code, overpowering greed and hype, and the layoffs that follow from it, I am shifting into academic research instead. [1]

    **I'm archiving Picocrypt** [2]

    [1]: github.com/Picocrypt/Picocrypt
    [2]: discuss.privacyguides.net/t/im

    #Encryption

  8. Argh, sucks. #Picocrypt is (was) a nice little tool for encrypting files and folders in Go with #XChaCha20 and #Argon2id. Thanks for the hard work.

    > I originally intended to work in the software engineering industry, but seeing the complete disregard for high quality code, overpowering greed and hype, and the layoffs that follow from it, I am shifting into academic research instead. [1]

    **I'm archiving Picocrypt** [2]

    [1]: github.com/Picocrypt/Picocrypt
    [2]: discuss.privacyguides.net/t/im

    #Encryption

  9. Argh, sucks. #Picocrypt is (was) a nice little tool for encrypting files and folders in Go with #XChaCha20 and #Argon2id. Thanks for the hard work.

    > I originally intended to work in the software engineering industry, but seeing the complete disregard for high quality code, overpowering greed and hype, and the layoffs that follow from it, I am shifting into academic research instead. [1]

    **I'm archiving Picocrypt** [2]

    [1]: github.com/Picocrypt/Picocrypt
    [2]: discuss.privacyguides.net/t/im

    #Encryption

  10. #Picocrypt is a very small (hence Pico), very simple, yet very #secure #encryption tool that you can use to protect your #files. It's designed to be the go-to tool for encryption, with a focus on security, simplicity, and reliability. Picocrypt uses the secure #XChaCha20 cipher and the #Argon2id key derivation function to provide a high level of security, even from three-letter agencies like the NSA. Your privacy and security is under attack. Take it back with confidence by protecting your files with Picocrypt.
    https://github.com/HACKERALERT/Picocrypt?tab=readme-ov-file

  11. #Picocrypt is a very small (hence Pico), very simple, yet very #secure #encryption tool that you can use to protect your #files. It's designed to be the go-to tool for encryption, with a focus on security, simplicity, and reliability. Picocrypt uses the secure #XChaCha20 cipher and the #Argon2id key derivation function to provide a high level of security, even from three-letter agencies like the NSA. Your privacy and security is under attack. Take it back with confidence by protecting your files with Picocrypt.
    https://github.com/HACKERALERT/Picocrypt?tab=readme-ov-file

  12. CW: CW Linux & Verschlüsselung (Nerdkram)

    Wenn jemand ein Linux-System mit LUKS verschlüsselt betreibt, könnte es sein, dass eine zu schwache (und veraltete) Key Derivation Function verwendet wird - vor allem, wenn die Installation schon etwas her ist.

    Hier gibt's mehr Informationen und auch eine (von mir erfolgreich getestete) Anleitung zum Aktualisieren der LUKS-Einstellungen von @mjg59:
    mjg59.dreamwidth.org/66429.htm

    #linux #luks #verschluesselung #encryption #pbkdf2 #argon2id

  13. @mjg59

    Thank you for sounding the alert!

    I identified a minor issue with your otherwise nice explanation: According to my sources (man cryptsetup, #rfc9106), all #argon2 varieties are memory-hard. RFC 9106 is even titled “Argon2 Memory-Hard Function for Password Hashing and Proof-of-Work Applications”.

    However, given that there are known attacks against #argon2i, it seems wise to use #argon2id instead. It is also what is recommended in the RFC.

    As a #QubesOS user, I just checked the state of affairs there:

    The cryptsetup that comes with QubesOS 3.x used #luks1, and those who did an in-place upgrade to 4.x still have that unless they converted to #luks2 manually (as detailed in the migration guide).

    The cryptsetup in QubesOS 4.x uses #luks2, but it still defaults to #argon2i unfortunately.