Hash collisions in password history
When a user changes password, I’d like to implement a simple check that prevents them from reusing the same password. If the new password matches the old password, reject with an error.
Sounds easy, but at the same time I’m aware that hash… Continue reading Hash collisions in password history