Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Add salt to password hashes #7

Open
starius opened this issue Sep 2, 2011 · 1 comment
Open

Add salt to password hashes #7

starius opened this issue Sep 2, 2011 · 1 comment

Comments

@starius
Copy link

starius commented Sep 2, 2011

IMHO, it is better to store salted passwords to complicate brute-force attacks and prevent from searching for users with same passwords.
It was implemented in my project thechess based on Wt:
https://bitbucket.org/starius/thechess/src/0ae7a62861b8/src/model/User.cpp
See method User::set_password
@matiu2
Copy link
Owner

matiu2 commented Sep 4, 2011

Thanks starius. I think I'll go with the SHA-512 crypt scheme mentioned here: http://en.wikipedia.org/wiki/Crypt_(Unix)

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@matiu2 @starius