Skip to content

auth: Limit password length to 256 characters.

Administrator requested to merge pwlength into master

Created by: nicksnyder

This safety limit is to protect us from a DDOS attack caused by hashing very large passwords on Sourcegraph.com.

Fixes https://github.com/sourcegraph/security-issues/issues/52

Screenshots:

Screen Shot 2020-01-07 at 9 35 44 AM Screen Shot 2020-01-07 at 9 38 34 AM

Merge request reports