qaz@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · edit-224 days agoPlease pick a password starting with ad and ending with minlemmy.worldimagemessage-square79fedilinkarrow-up1422arrow-down120file-text
arrow-up1402arrow-down1imagePlease pick a password starting with ad and ending with minlemmy.worldqaz@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · edit-224 days agomessage-square79fedilinkfile-text
minus-squareCommanderCloon@lemmy.mllinkfedilinkEnglisharrow-up6·24 days agoIf you hash in the browser it means you don’t salt your hash. You should absolutely salt your hash, not doing so makes your hashes very little better than plaintext.
minus-squareShadow@lemmy.calinkfedilinkEnglisharrow-up4arrow-down1·edit-224 days agoThere’s nothing stopping a browser from salting a hash. Salts don’t need to be kept secret, but it should be a new random salt per user.
If you hash in the browser it means you don’t salt your hash. You should absolutely salt your hash, not doing so makes your hashes very little better than plaintext.
There’s nothing stopping a browser from salting a hash. Salts don’t need to be kept secret, but it should be a new random salt per user.