Articles in category MaliciousMango
- First Sprint - March 24, 2016
Earlier this month Linus wrote about our new project Malicious Mango. Today we´ve finished our first sprint. Now we can log in with an email address and we can create a new user.
To be able to log in we validate the email address to actually be a registered user. Similarly as the email validation we control that the new user doesn’t already exists. As a letter in the mail we also got password validation when we implemented the server.
So we have actually built a complete and rather safe sign in system. We used the scrypt hashing algorithm to hash all the password and not actually saving the password on our database (take a hint Adobe). Supposedly, scrypt is more secure than the predecessor bcrypt since it’s design to resist parallelized brute force attacks.
We also begun on our next sprint, when done, can create profiles. It will be static though and no changes can be made. But still another step forward. Hopefully we can be done with that about a week from now.
Happy Easter// Project Lemon
- New beginnings - March 6, 2016
Today we began our new project by spending the afternoon working on the specifikation. We already had the idea but today we sat down and wrote together a piece of documentation stating exactly what kind of funtionality we wanted to have, which functionality we should build first and so on. We also drew up som besic design sketches for the application UI.