DISQUS

Hello! The comments on this profile are unclaimed and thus are unverified.

Do they belong to you? Claim these comments.

Unregistered

Feeds

aliases

Nick Hoffman
testiong

Nick Hoffman

Is this you? Claim Profile »

3 weeks ago

in Prova DISQUS on butterflog

moderiamoooo

Jump to »

11 months ago

in A New, Simple Way to Salt your Hashes on Code Spatter

Don't do this. The whole point of a salt is that it's a completely unknown, as-close-to-random string of characters as possible.

As sh1mmer said, introducing patterns or predictability into a crypto system compromises the system's security.

There are many easy ways to easily generate a "secure" salt. Eg:
-Use a seeded PRNG in your language.
-Read from /dev/random .
-Use the ID of an object in your program/script.

Cheers,
Nick

Jump to »

Returning? Login

DISQUS

Nick Hoffman

Reblog this comment