Answer the question
In order to leave comments, you need to log in
D
D
DarkByte20152016-10-21 10:16:00
DarkByte2015, 2016-10-21 10:16:00
How to implement hash salting?
I don't understand the hash salt thing. If the salt is dynamic, then let's say salted the hash, added it to the database. Then, for example, the user wants to log in: he enters the password and you need to take the hash with the salt again, but the salt is random and this time it will be different, therefore, the hash will come out different, which means it will not match the hash from the database ... And if the salt is static, then it can steal and hack everything. Well, or where to store it then so as not to be stolen?
2 answer(s)
@OLS
A
Andrew, 2016-10-21 @OLS
As a first approximation, they are salted so that it is impossible to pre-calculate a large set of hash values for the list of the most popular passwords, and then massively check it against the database. Therefore, the salt can be stored next to the hash value, it is important that it be different for each hash.
Similar questions
C
Cat Anton2015-10-01 16:44:23
How does Avito block the developer console in the Chrome browser?
3Reply
H
T
Teammate2018-03-03 19:55:00
A pop-up window from a malicious site has opened, should I be worried?
3Reply
K
kamwork2015-11-10 17:32:59
How to cure all files from a virus that adds the .value extension?
11Reply
R
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question