Comments on: Why passwords should be hashed http://security.blogoverflow.com/2011/11/why-passwords-should-be-hashed/ The Security Stack Exchange Blog Fri, 17 May 2013 09:35:18 +0000 hourly 1 http://wordpress.org/?v=3.5.1 By: roryalsop http://security.blogoverflow.com/2011/11/why-passwords-should-be-hashed/#comment-304 roryalsop Wed, 07 Dec 2011 13:55:56 +0000 http://security.blogoverflow.com/?p=426#comment-304 Michael – that is explicitly stated in the post “…In full details, the hashing process should include a per-password random salt (stored along the hashed value) and be appropriately slow (through thousands or millions of nested iterations), but that’s not the subject of this post. Just use bcrypt”

I do like your “use bcrypt” post though :-)

]]> By: Michael http://security.blogoverflow.com/2011/11/why-passwords-should-be-hashed/#comment-218 Michael Tue, 08 Nov 2011 18:04:19 +0000 http://security.blogoverflow.com/?p=426#comment-218 You should read this article. Hashing alone is not going to cut it. You have to slow down the operations with something like bcrypt.

http://codahale.com/how-to-safely-store-a-password/

]]> By: Things I will be reading this week: 06-11-2011 | Toby's Technical Ramblings http://security.blogoverflow.com/2011/11/why-passwords-should-be-hashed/#comment-210 Things I will be reading this week: 06-11-2011 | Toby's Technical Ramblings Sun, 06 Nov 2011 21:26:45 +0000 http://security.blogoverflow.com/?p=426#comment-210 [...] with Anonymous.Real and useful security help for developers.Popular Captchas easily defeated.Why Passwords should be hashed.Related posts:Things I will be reading this week: 24-10-2011Things I will be reading this week: [...]

]]>