Re: Newbie Salt and Pass Phrase Question.

Larry Lindstrom <nobody@xxxxxxxxxxx> wrote:
Where are users going to keep this hash? I'm guessing
on their computer somewhere. Perhaps keeping this in some
obscurely named file in a remote directory is OK.

You don't store the hash, you store the salt. With the password and the
salt, you can regenerate the hash.

--
Kristian Gjøsteen
.

Relevant Pages

  • Re: Hidden Application Data
    ... The reason I want to hide the user's credentials is not from the user ... If you must keep things locally then do not store the ... For a new application you should use SHA-256 as the hash. ... cryptographic salt seehttp://en.wikipedia.org/wiki/Salt_. ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Confused by salt
    ... I hope someone can help clear my confusion. ... time back that used a hash function to store a password. ... advised me that I really ought to use a salt with this in order to add ...
    (sci.crypt)
  • Re: Hashed password secure?
    ... > would be comparing hash values of keyand this hash value would be ... What if I were to salt the password with N bits and *NOT* store the ... second average to check whether a password is correct? ...
    (sci.crypt)
  • Re: Hidden Application Data
    ... How can I store my application's data in a hidden way? ... username/password but instead store a cryptographic hash of the ... For extra security use some random salt as well. ... For a new application you should use SHA-256 as the hash. ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Hashed password secure?
    ... ]> would be comparing hash values of keyand this hash value would be ... ]What if I were to salt the password with N bits and *NOT* store the ... ]can store 65,536 numbers in 16 bits). ... ]attacks, the PC would check all 65,536 Salts anyway. ...
    (sci.crypt)