What are using to make that web-page?
Often with security is better to follow something that's made for this,it's easy to step wrong if trying to do it yourself.
Example Flask has flask-security or eg Flask-Bcrypt
Django follow batteries included model,Password management in Django.
Often with security is better to follow something that's made for this,it's easy to step wrong if trying to do it yourself.
Example Flask has flask-security or eg Flask-Bcrypt
flask-security Wrote:
- Use OWASP to guide best practice and default configurations.
- Migrate to more modern paradigms such as using oauth2 and JWT for token acquisition.
- Be more opinionated and 'batteries' included by reducing reliance on abandoned projects and bundling in support for common use cases.
Django follow batteries included model,Password management in Django.
Django Wrote:By default, Django uses the PBKDF2 algorithm with a SHA256 hash, a password stretching mechanism recommended by NIST.
This should be sufficient for most users: it’s quite secure, requiring massive amounts of computing time to break.