>they can precompute KDF outputs for each of those passwords and reuse them I'm ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gruez on April 18, 2023 \| parent \| context \| favorite \| on: PSA: Upgrade your LUKS key derivation function >they can precompute KDF outputs for each of those passwords and reuse them I'm not sure what is exactly meant by "precompute", but any sane implementation would use salts to prevent an attacker from precomputing common passwords so they can be used across multiple targets.

jagrsw on April 18, 2023 [–]

Ah.. that makes sense. I was sort-a stuck in the WiFi/WPA mode, where there are no explicit salts (I guess ssid names can be considered as such).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact