Home
In Depth Articles
Security Tips
Archives
About
Laravel Security Audits & Pentests
Practical Laravel Security Course

Sign in Subscribe

Laravel 12

Security Tip: Limiting bcrypt Passwords to 72 Bytes!

Security Tips

Security Tip: Limiting bcrypt Passwords to 72 Bytes!

[Tip #106] Laravel 12 gives us the ability to reject passwords longer than 72 bytes for bcrypt, but you need to turn it on manually. Oh, and don't forget to add a validation rule, or you'll be throwing suspicious 500 server errors! 😱

By Stephen Rees-Carter 11 Mar 2025

Securing Laravel

The essential security resource for Laravel developers.

Recommendations

Practical Laravel Security
practicallaravelsecurity.com
A hands-on practical Laravel Security course that uses interactive hacking exercises to teach you how to keep your applications secure. Because learning security doesn’t have to be boring!
Laravel Security Audits and Penetration Testing
valorinsecurity.com
Worried about the security of your Laravel app, or have a compliance deadline coming up? Book in a Security Audit today and get your app secured, before a hacker comes along...
Laravel Security Reviews
stephenreescarter.net/laravel-security-reviews
Are you concerned about the security of your app, but don’t have the budget for a full Security Audit and Penetration Test? These fixed-price reviews are what you're looking for!

Subscribe
In Depth Articles
Security Tips
Archives
Stephen's Socials

Powered by Ghost

Securing Laravel

The essential security resource for Laravel developers.