Reply to post: Re: Salted + A Real Hash...

Volunteer-run pirate Manga website attacked, loses hashed passwords, has ‘nobody’ to fix the mess

Anonymous Coward
Anonymous Coward

Re: Salted + A Real Hash...

It depends. I've seen many authentication schemes where the salt is a single global constant. Sometimes the hash is truncated so that UID + hash is a tidy 64 bit int. It would take 10^19 guesses so it's secure, right? And it's not possible to re-encrypt because there are external APIs that use only the 64 bits to keep the password safe.

<sobbing uncontrollably>

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022