in reply to What's the idea of different salts in crypt()?

Thanks all for the replies!

I summarize:

1) Salt is there to make a dictionary attack harder by a couple of magnitudes. Modern computing power however now makes a dictionary attack feasible.

2) Crypt is weak, use something stronger, as e.g. MD5. I would like to point out that I knew that, I just happened to be programming an awkward web server where I during the user register process had to make do with MySQLs internal hashing functions, of which only crypt worked in the version at hand (It is not a high security application.).

3.) Perlmonks is getting to be a real big community. I haven't been around much in the last 6 months; the reputation points to my posting is 300-400% higher than I expected!

Thanks all,

/jeorgen

  • Comment on Re: What's the idea of different salts in crypt()?

In Section Seekers of Perl Wisdom