Improve password hashing with a random salt
An attacker is “allowed” to know the salt – your security must be designed in a way that even with the knowledge of the salt it is still secure. What does the salt do ? Salt aids in defending against brute-force attacks using pre-computed “rainbow-tables”. Salt makes brute-force much more expensive (in time/memory terms) for … Read more