Top "Salt" questions

Cryptography function that takes random bits and a string (typically a password) and uses a one-way hash to provide a new string that can be used for authentication without providing access to the original string.

Why can bcrypt.hashpw be used both for hashing and verifying passwords?

Using bcrypt with Python 2.7, I can see that the example uses the bcrypt.hashpw to both hash a password for …

Read More
python hash salt bcrypt
Web app passwords: bcrypt and SHA256 (and scrypt)

With all the recent (e.g. LinkedIn) discussions of passwords I'm looking at password hashing implementations. After two cups of …

Read More
encryption passwords hash salt bcrypt
Spring Security salt for custom UserDetails

I would like to add salt like: PasswordEncoder encoder = new ShaPasswordEncoder(); userDetails.setPassword(encoder.encodePassword(userDetails.getPassword(),saltSource.getSalt(userDetails)); …

Read More
configuration spring-security salt details
How would you add salt to your existing password hashes?

I have a database of hashed passwords that had no salt added before they were hashed. I want to add …

Read More
security migration passwords salt
How does salt work in Rails' has_secure_password

From what I understand from salting to make an encrypted password more secure, I would generate a random number (the …

Read More
ruby-on-rails ruby security salt
how does password hash+salt work

I though I understood hashing and salting passwords but it seems I have some misconceptions. I am creating a user …

Read More
node.js hash salt bcrypt