![]() Users should never disclose their password, not even to their network administrator. One of the things, and it goes without saying, we want to include length and complexity and this is going to make your password stronger. We want to tell our users to protect their passwords. The salt is stored in the database, along with the hash or as part of the hash string. The same password, but they have a different hash value. However if we add salt to the hash, we can see that both hashes are now different. As you can see the resultant hash, the two are exactly the same. Take a look at this, in this we see an unsalted hash. A rainbow table works because every hashed password will return the same hash. Now salting the password with a random string will protect against a rainbow table attack. Salting, user education, common sense, and hardening your systems. However, protecting against a password attack includes a few key guidelines. ![]() There are a number of attacks against passwords.
0 Comments
Leave a Reply. |