What exactly does password hashing and salting protect against?

Register Sign In

What exactly does password hashing and salting protect against?

El Forum
Guest

#20

01-07-2010, 10:53 PM

[eluser]bretticus[/eluser]
Hahaha, great thread!

You guys have me convinced on 2 points:

1. There is no way to protect a hashed password in a database if the attacker has access to your code and data UNLESS the password is sufficiently strong (not part of the dictionary list.)

2. When I want to be as secure as possible, I'm going to use a per-user AND a site-wide salt. Of course, that is only going to protect my weak passwords if the attacker gets the database OR the site code AND NOT BOTH. Which brings me back to ENFORCE STRONG PASSWORDS. Smile

Smile

Cheers

Messages In This Thread

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 10:04 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 12:42 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 01:21 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 01:39 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 05:48 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 07:05 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 09:10 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:53 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:59 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:02 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:08 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:12 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:17 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:36 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 11:34 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:26 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:55 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 05:41 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 06:49 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 10:53 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 07:41 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 12:45 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 01:08 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 01:37 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 02:15 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:05 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:17 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:32 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:56 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:10 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:42 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:50 PM

Theme © iAndrew 2016 - Forum software by © MyBB