Encryption VS Hash OR Mix?
Posted: Sat Feb 03, 2007 10:46 am
Storing a password what is the best practice?
1. Encryption
2. Hashing
3. Hashing the Encryption (Or some other variation)
EDIT:
And what about the idea of dual salts, one salt from the database that is unique to each user, and one salt that is hard coded into the system?
1. Encryption
2. Hashing
3. Hashing the Encryption (Or some other variation)
EDIT:
And what about the idea of dual salts, one salt from the database that is unique to each user, and one salt that is hard coded into the system?