John Burns said
> I read some comments the other day on the list about using hash() to
> store passwords in a database and someone sent a link to a microsoft
> document explaining the security benefits to storing passwords that
> way.
Do what Jochem said.
Make sure the salt value *cannot* change
Burns, John said:
> I read some comments the other day on the list about using hash() to
> store passwords in a database and someone sent a link to a microsoft
> document explaining the security benefits to storing passwords that
> way. In the article, it talked about using a "salt" parameter that
2 matches
Mail list logo