cassandra-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tyler Hobbs (JIRA)" <j...@apache.org>
Subject [jira] [Created] (CASSANDRA-8085) Make PasswordAuthenticator number of hashing rounds configurable
Date Wed, 08 Oct 2014 16:59:34 GMT
Tyler Hobbs created CASSANDRA-8085:
--------------------------------------

             Summary: Make PasswordAuthenticator number of hashing rounds configurable
                 Key: CASSANDRA-8085
                 URL: https://issues.apache.org/jira/browse/CASSANDRA-8085
             Project: Cassandra
          Issue Type: Improvement
          Components: Core
            Reporter: Tyler Hobbs
            Assignee: Aleksey Yeschenko
             Fix For: 2.0.11, 2.1.1


Running 2^10 rounds of bcrypt can take a while.  In environments (like PHP) where connections
are not typically long-lived, authenticating can add substantial overhead.  On IRC, one user
saw the time to connect, authenticate, and execute a query jump from 5ms to 150ms with authentication
enabled ([debug logs|http://pastebin.com/bSUufbr0]).

CASSANDRA-7715 is a more complete fix for this, but in the meantime (and even after 7715),
this is a good option.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message