Stack Overflow
Stack Overflow

Questions tagged [saltedhash]

72 questions
0
votes
1 answer

iOS App for emergency response - how to secure the data without a password?

I have a unique use case here: I need to enhance a stand-alone iPhone app "EmergencyResponse" (name changed for this post) that is used by at-risk patients. Patients/Caregivers setup the app with information about their medications, physician…
CoolDocMan
  • 637
  • 7
  • 29
0
votes
2 answers

How to generate a random salt for hashing passwords

Possible Duplicate: Secure hash and salt for PHP passwords I want to generate a random salt and then store it along with the password in the user database. So something like this I think. $salt = //random salt code $hpassword =…
Travis Nabbefeld
  • 393
  • 3
  • 7
  • 14
0
votes
1 answer

Having trouble with apache shiro saltedauthentication.hashProvidedCredentials not given expected hash

This is the second time I'm using apache shiro in a project but the first time am salting the password.this time around i use apache shiro 1.2.0 . I'm using shiro in a web application using jsp, spring, JPA(spring-data-jpa) and using SHA256 for…
black sensei
  • 6,528
  • 22
  • 109
  • 188
0
votes
1 answer

how to authentificate user with salt passeword sha-1 with tomcat 7

I try to configure datasourceRealm using tomcat 7.0.x with user authentification data store in DataBase in two columns one with salt and another with hash. I don't know how to configure DataSourceRealm with password column and how to authentificate…
kokumbo
  • 11
  • 1
  • 3
0
votes
5 answers

What is the best way to securely store password (hashes)

A lot of websites these days are hacked and the password hashes are stolen. Even big websites like LinkedIn didn't store their passwords secure (just md5). Now is my question, what is a secure enough way to hash password? Currently I'm using…
VDVLeon
  • 1,393
  • 1
  • 15
  • 26
0
votes
1 answer

Should I send salt value to web browser to secure password

I have read about salted hash password technique to protect password from some attacks. https://www.owasp.org/index.php/Hashing_Java#Why_add_salt_.3F But I have some confusing, should I send a salt value (for all use try to login) and then use…
oDisPo
  • 187
  • 1
  • 5
-1
votes
2 answers

salt and hash encryption/decryption for links

ok, so i have some links that will be generated for some ads on my website via php. Now the problem i have is simply i understand how md5 works and it's not an encryption and it can not be re-rendered in its rarest form..... i have some mysql ids…
Youngnate DaGreat
  • 322
  • 6
  • 22
-1
votes
1 answer

Is Argon2 better than salted hashing algorithm?

I already know that slow-hashing functions are good for storing passwords as it is very time consuming to crack them. And we know that Argon2 is a slow algorithm, and not only that, but Argon2 consumes a lot of memory as well. A webmaster would just…
Neha AK
  • 67
  • 1
  • 10
-1
votes
1 answer

PEPPER in a backend Flask app throwing KeyError: 'PEPPER'

We are doing a small backend project and the mate who developed the backend is not working with us anymore. We are stuck with this now, I understand this is related to security related? Trying to host the backend on Heroku and we get the below error…
Oxycash
  • 167
  • 12
-1
votes
1 answer

Need Salted MD5 technique for login

I need the following methods for login module and reset-password module. a) Salted MD5 technique in "authentication or login module‟ b) MD5 hash technique in "reset password‟ modules. and how it should work, I write the description below. When a…
Gaurav
  • 557
  • 4
  • 11
  • 28
-2
votes
1 answer

How to save passwords in MySQL database using Asp.Net in C#

What method is best suitable theses days for saving salted/hashed passwords in a database? I am thinking about BCrypt or SHA51 or PBKDF2, which one is best suited? And someone please tell me how to implement them in Mysql database using Asp.net in…
Deep
  • 81
  • 2
  • 11
-4
votes
1 answer

Can a password be cracked with this information?

In the screenshot there is a browser cookie with an encrypted seed hex and a salt hex. It is possible to find out the seed from this information? Why? Why not? Thanks!
Andrew Richmond
  • 95
  • 2
1 2 3 4
5