qaz@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · edit-24 months agoPlease pick a password starting with ad and ending with minlemmy.worldimagemessage-square83fedilinkarrow-up1424arrow-down120file-text
arrow-up1404arrow-down1imagePlease pick a password starting with ad and ending with minlemmy.worldqaz@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · edit-24 months agomessage-square83fedilinkfile-text
minus-squareCommanderCloon@lemmy.mllinkfedilinkEnglisharrow-up6·4 months agoIf you hash in the browser it means you don’t salt your hash. You should absolutely salt your hash, not doing so makes your hashes very little better than plaintext.
minus-squareShadow@lemmy.calinkfedilinkEnglisharrow-up5arrow-down1·edit-24 months agoThere’s nothing stopping a browser from salting a hash. Salts don’t need to be kept secret, but it should be a new random salt per user.
If you hash in the browser it means you don’t salt your hash. You should absolutely salt your hash, not doing so makes your hashes very little better than plaintext.
There’s nothing stopping a browser from salting a hash. Salts don’t need to be kept secret, but it should be a new random salt per user.