You could compute a very slow hash on the client, using bcrypt or argon2id. Then... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

speedgoose on Nov 2, 2020 | parent | context | favorite | on: You might not need to store plaintext email addres...

You could compute a very slow hash on the client, using bcrypt or argon2id. Then your attack is still possible but a bit more expensive.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact