What exactly does password hashing and salting protect against?

Register Sign In

What exactly does password hashing and salting protect against?

El Forum
Guest

#4

01-06-2010, 01:39 PM

[eluser]jimps[/eluser]
[quote author="wowdezign" date="1262824970"]It's true that if a person uses a weak password, then their account is vulnerable.

Hashing and salting passwords helps against "rainbow tables". I hope the reference is alright:

http://en.wikipedia.org/wiki/Rainbow_table

Some developers like to use a site salt. I use a different salt for each user in the db.

Hope that helps.[/quote]

It's smart to use static salt AND dynamic salt (different for every user). It's also a good thing to don't collect the dynamic user salt in a extra column named "Salt" or something like that. A better way is to use already stored data and merge it with other data.

Messages In This Thread

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 10:04 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 12:42 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 01:21 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 01:39 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 05:48 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 07:05 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-06-2010, 09:10 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:53 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:59 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:02 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:08 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:12 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:17 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:36 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 11:34 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 03:26 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 04:55 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 05:41 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 06:49 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-07-2010, 10:53 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 07:41 AM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 12:45 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 01:08 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 01:37 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 02:15 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:05 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:17 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:32 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 03:56 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:10 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:42 PM

What exactly does password hashing and salting protect against? - by El Forum - 01-08-2010, 04:50 PM

Theme © iAndrew 2016 - Forum software by © MyBB