[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

the point of password salt?

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /sci/ - Science & Math
  3. the point of password salt?
Thread replies: 6
Thread images: 1

Anonymous
the point of password salt? 2017-03-07 08:03:46 Post No.
[Report] Image search: [Google]
File: egghead_avatar.png (90KB, 714x810px) Image search: [Google]
egghead_avatar.png
90KB, 714x810px
the point of password salt? Anonymous 2017-03-07 08:03:46 Post No. [Report]
I understand that salt makes it harder to use rainbow table to find password given a table of hashed password.

But since you already have a table of hashed password, meaning the server is already compromised, why can't you have each user's salt as well?
>>
Anonymous 2017-03-07 08:19:33 Post No.8729344
[Report]
Anonymous 2017-03-07 08:19:33 Post No.8729344 [Report]
>>8729305
>>>/g/
>>
Anonymous 2017-03-07 08:32:47 Post No.8729368
[Report]
Anonymous 2017-03-07 08:32:47 Post No.8729368 [Report]
>>8729305
You typically do have the salts in the password file, but even knowing the salt doesn't mean you know the hash. You have to run the hash function for each line, because matched hashes don't correspond to matched passwords if they're salted.
>>
Anonymous 2017-03-07 09:42:01 Post No.8729549
[Report]
Anonymous 2017-03-07 09:42:01 Post No.8729549 [Report]
If 1000 people in your database used 'password' as their password, an attacker would crack all of them by cracking one. Salts prevent this.
>>
Anonymous 2017-03-08 02:40:40 Post No.8730147
[Report]
Anonymous 2017-03-08 02:40:40 Post No.8730147 [Report]
>>8729305
>But since you already have a table of hashed passwords
No, you have a table of salted hashes.
>>
Anonymous 2017-03-08 08:08:17 Post No.8731913
[Report]
Anonymous 2017-03-08 08:08:17 Post No.8731913 [Report]
what would happen if I used an username as a salt
Thread posts: 6
Thread images: 1
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.