Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived General Discussion CodeIgniter Community Voice - Michael Wales
CodeIgniter Community Voice - Michael Wales
  • El Forum
    Guest
  •  
#8
06-30-2008, 10:09 PM

[eluser]Eric Cope[/eluser]
[quote author="Lewis" date="1214881652"][quote author="Derek Allard" date="1213951249"]I know what you’re thinking. If the database is stolen they’ve got the password and the dynamic salt “What good is that?!” This is where a static salt comes in. [/quote]

Not entirely true. A salt makes the hash completely different. This means that the most practical method of using hash rainbow tables (a dictionary of pre-computed hashes and their original values) is useless.

So it's still 99% effective and something everyone should do. Even a simple static hash is better than nothing, and they're no trouble to implement. It's just a shame sites still insist on storing passwords in plaintext.[/quote]

I like comments out of left field. It always keeps me on my toes.


Messages In This Thread
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-19-2008, 09:40 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-19-2008, 11:56 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-20-2008, 04:35 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-24-2008, 10:13 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-25-2008, 02:13 AM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-30-2008, 04:07 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-30-2008, 04:25 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 06-30-2008, 10:09 PM
CodeIgniter Community Voice - Michael Wales - by El Forum - 07-01-2008, 12:26 AM



Theme © iAndrew 2016 - Forum software by © MyBB