And to slightly improve salting: $pw_hash = sprintf('%s|%s|%s|%s|%s', SALT1, $us... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

mojuba on April 6, 2012 | parent | context | favorite | on: Speed Hashing

And to slightly improve salting:

    $pw_hash = sprintf('%s|%s|%s|%s|%s',
        SALT1, $user_name, SALT2, $pw, SALT3);

In fact, my salts usually include non-printables, including the NULL char, plus they are very long.

judofyr on April 6, 2012 [–]

How does this improve salting? The point of salting is to avoid rainbow tables; as long as the salt is random you should be safe.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact