mirror
/
oragono
mirror of https://github.com/oragono/oragono
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 68 Wiki Activity
Browse Source

reduce recommended bcrypt cost to the lowest allowed value 

Two objectives:

1. Reduce thundering-herd effects on server restart (a cost of 4 should be
approximately 1 millisecond of CPU time per reconnecting client)
2. Speed up mobile reattach as much as possible (see also #1420)
tags/v2.5.0-rc1
Shivaram Lingamneni 3 years ago
parent
2e7cf3cc1e
commit
e191e67632
2 changed files with 4 additions and 2 deletions
Unified View Show Diff Stats
  1. 2
    1
      default.yaml
  2. 2
    1
      traditional.yaml

+ 2
- 1
default.yaml View File

372 
             max-attempts: 30
 372 
             max-attempts: 30
373
373
374 
         # this is the bcrypt cost we'll use for account passwords
 374 
         # this is the bcrypt cost we'll use for account passwords
375 
-        bcrypt-cost: 9
375 
+        # (note that 4 is the lowest value allowed by the bcrypt library)
376 
+        bcrypt-cost: 4
376
377
377 
         # length of time a user has to verify their account before it can be re-registered
 378 
         # length of time a user has to verify their account before it can be re-registered
378 
         verify-timeout: "32h"
 379 
         verify-timeout: "32h"

+ 2
- 1
traditional.yaml View File

344 
             max-attempts: 30
 344 
             max-attempts: 30
345
345
346 
         # this is the bcrypt cost we'll use for account passwords
 346 
         # this is the bcrypt cost we'll use for account passwords
347 
-        bcrypt-cost: 9
347 
+        # (note that 4 is the lowest value allowed by the bcrypt library)
348 
+        bcrypt-cost: 4
348
349
349 
         # length of time a user has to verify their account before it can be re-registered
 350 
         # length of time a user has to verify their account before it can be re-registered
350 
         verify-timeout: "32h"
 351 
         verify-timeout: "32h"

Write Preview
Loading…
Cancel
Save