[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Fw: Salted hashes
Thanks Marc. That's what I was getting out of it as well but I wanted to
check to be sure.
Eric Speake
Web Systems Administrator
O'Reilly Auto Parts
(417) 862-2674 Ext. 1975
From: Marc Haber <mh+openldap-technical@zugschlus.de>
To: openldap-technical@openldap.org
Date: 03/18/2014 10:12 AM
Subject: Re: Fw: Salted hashes
Sent by: openldap-technical-bounces@OpenLDAP.org
On Tue, Mar 18, 2014 at 09:49:36AM -0500, espeake@oreillyauto.com wrote:
> I have been doing some reading on the salted hash and I know that I never
> setup a salt for servers. We are doing some documentation for our
security
> people and the question came up about the salt and if it differs for each
> user, or if the same salt is used?
The basic idea of a salted hash is that the salt is different for
every user so that a rainbow table of hashes is only useful for a
single password.
Usually, the salt is randomized when a hash is generated.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 31958061
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 31958062
--
This message has been scanned for viruses and dangerous content,
and is believed to be clean.
Message id: 9899260142D.AEEF2
This communication and any attachments are confidential, protected by Communications Privacy Act 18 USCS ยง 2510, solely for the use of the intended recipient, and may contain legally privileged material. If you are not the intended recipient, please return or destroy it immediately. Thank you.