tag:blogger.com,1999:blog-6849619265483407528.post137138071415255760..comments2024-03-28T04:36:17.616-07:00Comments on Programming Interview Questions and Answers: How to store user passwords using variable length random salt bytes with secure SHA512 cryptographic hashing functionsNikhil Singhalhttp://www.blogger.com/profile/03662183414943720702noreply@blogger.comBlogger26125tag:blogger.com,1999:blog-6849619265483407528.post-15936842201560455672022-03-04T06:08:08.788-08:002022-03-04T06:08:08.788-08:00Casino de Monte Carlo - Mapyro
Casino de Monte Car...Casino de Monte Carlo - Mapyro<br />Casino de Monte Carlo, <a href="https://www.mapyro.com/%ec%97%ac%ec%a3%bc%ec%a3%bc%eb%b3%80-%ea%b0%80%ea%b9%8c%ec%9a%b4%ec%b6%9c%ec%9e%a5%ec%83%b5.html" rel="nofollow">여주 출장안마</a> the most beautiful casino in the world. Built by Casino <a href="https://drmcd.com/%ea%b4%91%eb%aa%85%ec%b5%9c%ec%83%81%ec%9d%98-%ea%b4%80%eb%a6%ac%ec%b6%9c%ec%9e%a5%eb%a7%88%ec%82%acbabettetagawahttps://www.blogger.com/profile/12034437077581392295noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-54610260464847717352022-02-05T02:20:56.044-08:002022-02-05T02:20:56.044-08:00This comment has been removed by the author.Kalpita Gangulihttps://www.blogger.com/profile/11195674321814912260noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-5267273798257079822021-12-14T02:21:17.770-08:002021-12-14T02:21:17.770-08:00These are the great blogs; I assure you that I rea...These are the great blogs; I assure you that I really enjoyed a lot in reading.<br /><a href="https://www.inthow.com/beginner-guide-to-building-your-first-app/" rel="nofollow">mobile app agencies</a><br />Kimberly Beckhamhttps://www.blogger.com/profile/09394382633954917807noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-57109358980851573772021-08-02T13:52:32.714-07:002021-08-02T13:52:32.714-07:00Poland is considered a great nation because of the...Poland is considered a great nation because of the whole region. Its total land area is 312,679 km² (approximately 120,725 mi²). The shelf life of the Polish continent is about 29,797 km² (approximately 11,505 mi²). Poland is located in Europe. Europe is a continent whose borders go back to antiquity. European countries include, but are not limited to, the United Kingdom, Italy, Germany, Bextolhttps://www.blogger.com/profile/00468858339605247006noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-89233618145048001662021-01-26T21:36:17.941-08:002021-01-26T21:36:17.941-08:00This is such a great resource that you are providi...This is such a great resource that you are providing and you give it away for free. I love seeing blog that understand the value of providing a quality resource for free. <a href="https://www.designz23.com" rel="nofollow">Allentown Ecommerce Designer</a><br />markthomsonhttps://www.blogger.com/profile/18191523150893675707noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-12467414672550416182020-07-19T10:15:45.807-07:002020-07-19T10:15:45.807-07:00Quickbooks provides all kind of accounting softwar...Quickbooks provides all kind of accounting software , quickbooks is very user friendly software qucikbooks professional can guide you throughout the process with all the version of quickbooks that full fill your business Needs.<a href="https://thestandarddaily.com/quickbooks-pro///" rel="nofollow">quickbooks desktop pro 2019</a>sam smithhttps://www.blogger.com/profile/03321825405983517595noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-86412971674655511162020-07-08T02:55:23.480-07:002020-07-08T02:55:23.480-07:00QooApp Download Three are usually cheap Ralph Laur...<a href="https://allguestpost.com/download-qooapp/" rel="nofollow">QooApp Download</a> Three are usually cheap Ralph Lauren available for sale each and every time you wish to buy. <br />roufhttps://www.blogger.com/profile/14364556698246979520noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-56486274096086398492020-03-09T08:34:00.876-07:002020-03-09T08:34:00.876-07:00Roblox players lose their account when using the F...Roblox players lose their account when using the Free Robux Hack. That's when customers try free Roblox Robux codes and Robux hacks on the Internet<br /><a href="http://site-2281215-8139-8674.mystrikingly.com/" rel="nofollow">free robux generator</a>besthttps://www.blogger.com/profile/13212242648507826261noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-38050218651447891702020-01-24T21:12:00.897-08:002020-01-24T21:12:00.897-08:00Try new roblox with new features as friendly user ...Try new roblox with new features as friendly user interface and smart code filler and the best <a href="https://rblxgg.co/" rel="nofollow">rblx.gg generator</a> for the games.cobb denyhttps://www.blogger.com/profile/14507035826322990049noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-77587052252398610762020-01-06T03:02:15.053-08:002020-01-06T03:02:15.053-08:00By just download and install Norton setup security...By just download and install Norton setup security software, you have to know all of there security features and how to use them appropriately. Norton setup is the best antivirus software program that defends any user against any type of error, virus and malware attacks. <a href="http://set-upnorton.com/" rel="nofollow">Norton setup</a> has its advanced version which is called Norton 360. Norton jamesdeny123https://www.blogger.com/profile/14541418564378405673noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-38308286096696988152019-08-31T04:51:45.470-07:002019-08-31T04:51:45.470-07:00This blog is the general information for the featu...This blog is the general information for the feature. You got a good work for these blog.We have a developing our creative content of this mind.Thank you for this blog. This for very interesting and useful.<br /><a href="https://www.gangboard.com/software-testing-training/selenium-training" rel="nofollow">Selenium online training </a><br /><a href="https://www.gangboard.com/jothikumarhttps://www.blogger.com/profile/06285528842586601752noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-72469832227870648692018-12-21T23:09:53.127-08:002018-12-21T23:09:53.127-08:00freemyapps for android
download qooapp for a...<a href="https://freemyapps.vip/apk/" rel="nofollow">freemyapps for android</a><br /> <a href="https://qooapp.guide/apk/" rel="nofollow">download qooapp for android</a><br /> <a href="https://rootchecker.software/apk/" rel="nofollow">root checker android</a><br /><br />Anonymoushttps://www.blogger.com/profile/12430616203096440836noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-49133685527193180272017-05-14T18:34:30.968-07:002017-05-14T18:34:30.968-07:00• Your post has many fine detail information. I re...• Your post has many fine detail information. I read your article and I actually like it. I want to thank posting this great post.<br /><br />* <a href="http://street-view.org/" rel="nofollow">Street view</a> <br />Street viewhttps://www.blogger.com/profile/10473847214132291031noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-35495647120507123932016-11-02T04:34:48.398-07:002016-11-02T04:34:48.398-07:00keep sharing
Best Selenium Training Center in chen...keep sharing<br /><a href="http://www.credosystemz.com/training-in-chennai/best-software-testing-training-in-chennai/best-selenium-training-in-chennai/" rel="nofollow">Best Selenium Training Center in chennai</a> | <a href="http://www.credosystemz.com/training-in-chennai/best-software-testing-training-in-chennai/best-selenium-training-in-chennai/" rel="nofollow">Best Automation Testing Training Anonymoushttps://www.blogger.com/profile/11504954986758805381noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-71354915166291936732016-09-18T01:09:04.837-07:002016-09-18T01:09:04.837-07:00nice and really helpful article to everyone... tha...nice and really helpful article to everyone... thanks for sharing<br /><br /><a href="www.credosystemz.com/training-in-chennai/best-software-testing-training-in-chennai/best-selenium-training-in-chennai/" rel="nofollow">selenium training in chennai</a> | <a href="www.credosystemz.com/training-in-chennai/best-software-testing-training-in-chennai/best-selenium-training-in-chennai/" rel="nofollow">Anonymoushttps://www.blogger.com/profile/06718247729204063664noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-56774701893571627522016-09-15T00:37:09.238-07:002016-09-15T00:37:09.238-07:00thanks a lot for sharing
Best Selenium Training in...thanks a lot for sharing<br /><a href="http://www.credosystemz.com/training-in-chennai/best-software-testing-training-in-chennai/best-selenium-training-in-chennai/" rel="nofollow">Best Selenium Training in Chennai</a> | <a href="http://www.credosystemz.com/training-in-chennai/best-android-training-in-chennai/" rel="nofollow">Android Training in Chennai</a> | <a href="http://www.credosystemz.com/Anonymoushttps://www.blogger.com/profile/11504954986758805381noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-76419307812141511112014-01-18T08:14:11.014-08:002014-01-18T08:14:11.014-08:00It seems to be that using PBKDF2 is significantly ...It seems to be that using PBKDF2 is significantly simpler than using SHA512 as it gives you key stretching out of the box. Something like this: http://manyrootsofallevilrants.blogspot.co.uk/2012/12/slow-vs-fast-hashing-algorithms-in-c.htmlmanyrootsofallevilhttps://www.blogger.com/profile/06007797472443678538noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-48125374135243068202013-11-17T18:33:24.979-08:002013-11-17T18:33:24.979-08:00When I use salt with the password and then hash, w...When I use salt with the password and then hash, wouldn't I need the salt stored somewhere so when a user enters their password and I need to see if the hashes match wouldn't I have to use the same salt with the password? Do you store the salt used in the user's account? Am I misunderstanding you?JDhttps://www.blogger.com/profile/12791019342122743668noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-37132923213564638902013-01-31T02:04:10.611-08:002013-01-31T02:04:10.611-08:00Hi, nice article, but I have some questions. Like ...Hi, nice article, but I have some questions. Like what about SQL, can I store these passwords there and pull them back to verify user input, is that safe? <br />Is there any way to make passwords crypted in sql, hash them there and just verify in front end (web app in C#) if they were the same?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-88881603585337847652012-11-23T05:05:06.242-08:002012-11-23T05:05:06.242-08:00I've answered my own question: it can't be...I've answered my own question: it can't be done - which is the point of this type of hash.<br />Thanks.Ben Cox.noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-21690452611099517432012-11-23T04:07:27.387-08:002012-11-23T04:07:27.387-08:00Nikhil,
Thanks for your post. Not understanding al...Nikhil,<br />Thanks for your post. Not understanding all of the code, is this possible: Decrypting the encrypted password to return as a string (the actual password)? Ben Coxnoreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-27695318463475834762012-06-08T00:08:06.801-07:002012-06-08T00:08:06.801-07:00can you help me I tried to use your method to encr...can you help me I tried to use your method to encrypt login and register page of my site I'm new in encryption so I tried to use salt hash for make register page save user and password in sql database in hash then when user login will retrieve it from sql data base.. If you have a code project can I download or help me in any other way I'm very thankful for your help,Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-52482549018546259022012-05-27T20:33:53.734-07:002012-05-27T20:33:53.734-07:001. I understand Microsoft banning it outright as a...1. I understand Microsoft banning it outright as a policy just to keep things simpler, but your article implies they're unsafe for password hashes, which is just not correct. The MSDN article explicitly mentions the weakness is for use with digital signatures, not one-way hashing.<br /><br />2. Interesting, I've not before heard of variable-length being used to solve this problem. I'Coryhttps://www.blogger.com/profile/12435699758575995935noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-60905927397492201842012-05-27T15:04:46.728-07:002012-05-27T15:04:46.728-07:00Hi Cory,
Thanks for taking the time to read the co...Hi Cory,<br />Thanks for taking the time to read the code and respond. <br /><br />1. MD5 and SHA1 are banned by Microsoft SDL team. This article http://msdn.microsoft.com/en-us/magazine/ee321570.aspx is a great read. Check out the first figure where they talk about Acceptable/Recommended algorithms for Hash.<br /><br />2. A variable length salt gives extra protection against birthday attacks. Nikhil Singhalhttps://www.blogger.com/profile/03662183414943720702noreply@blogger.comtag:blogger.com,1999:blog-6849619265483407528.post-36548197161460661512012-05-27T13:02:02.287-07:002012-05-27T13:02:02.287-07:00Nikhil,
1) MD5/SHA1 are broken for digital signat...Nikhil,<br /><br />1) MD5/SHA1 are broken for digital signatures because we've found ways to make one input hash the same as another input. This doesn't affect passwords, where their use is still perfectly fine (the goal here is to be one-way, or non-recoverable). Their only weakness compared to SHA-512 is that SHA-512 is a stronger hash (which is a fine enough reason to not use them).<brCoryhttps://www.blogger.com/profile/12435699758575995935noreply@blogger.com