Proper Password Management

I’m using the Python module bcrypt to encrypt passwords. That’s a wrapper around a C library that implements the OpenBSD Blowfish algorithm. It follows the UNIX convention for passwords: they’re stored encrypted.

Candidly, it's a small thing, but every time I have bcrypt.checkpw() compare a plaintext password against the stored encrypted one and it returns True I feel so smart.

19 January 2023