-
as seen on Stack Overflow
- Search for 'Stack Overflow'
Is there a significance to the word "salt" for a password salt?
>>> More
-
as seen on Stack Overflow
- Search for 'Stack Overflow'
Hey everyone,
Further to my question here, I have another question regarding salts.
When someone says "use a random salt" to pre/append to a password, does this mean:
Creating a static a 1 time randomly generated string of characters, or
Creating a string of characters that changes at random…
>>> More
-
as seen on Stack Overflow
- Search for 'Stack Overflow'
What's the best way to generate a cryptographically secure 32 bytes salt in PHP, without depending on libraries seldom included in typical PHP installations?
After some googling I discovered that mt_rand is not considered secure enough, but I haven't found a suggestion for a replacement. One article…
>>> More
-
as seen on Stack Overflow
- Search for 'Stack Overflow'
I've read through many of the questions on SO about this, but many answers contradict each other or I don't understand.
You should always store a password as a hash, never as plain text.
But should you store the salt (unique for each user) next to the hashed password+salt in the database. This doesn't…
>>> More
-
as seen on Stack Overflow
- Search for 'Stack Overflow'
what is "salt", also what is "rainbow table".
>>> More
