The Artima Developer Community
Articles | News | Weblogs | Books | Forums
Artima Forums | Articles | Weblogs | Java Answers | News
Sponsored Link

.NET Buzz Forum
Password Hashing

0 replies on 1 page.

Welcome Guest
  Sign In

Go back to the topic listing  Back to Topic List Click to reply to this topic  Reply to this Topic Click to search messages in this forum  Search Forum Click for a threaded view of the topic  Threaded View   
Previous Topic   Next Topic
Flat View: This topic has 0 replies on 1 page
James Avery

Posts: 1206
Nickname: james615
Registered: Sep, 2003

James Avery is a .NET pimp
Password Hashing Posted: Jul 13, 2004 9:07 PM
Reply to this message Reply

This post originated from an RSS feed registered with .NET Buzz by James Avery.
Original Post: Password Hashing
Feed Title: .Avery Blog
Feed URL: /blog/Install/BlogNotConfiguredError.aspx
Feed Description: .NET and everything nice 		Latest .NET Buzz Posts
Latest .NET Buzz Posts by James Avery
Latest Posts From .Avery Blog

Advertisement

This site was mentioned on the latest DotNetRocks and it is a good reminder that hashing a password is not enough.

This site basically created all the possible hashes for 8 letter passwords using [a-b][0-9], so you can send it a hash and it will return the password for you. It even possible to do this for larger hashes (they would need to create much larger tables), but if you throw in a strong salt this becomes practically impossible. (because a good salt is a set of random bytes, exponentially increasing the difficulty of using this sort of method to find the password)

This article contains a decent explanation of how to add a salt to your hashed password , I have been meaning to write something up on how to best do this... but I have not gotten around to it yet.

-James

Read: Password Hashing

Topic: Microsoft & Java communities... Previous Topic   Next Topic Topic: TracePoint
Sponsored Links


Google
  Web Artima.com   

Copyright © 1996-2019 Artima, Inc. All Rights Reserved. - Privacy Policy - Terms of Use