good chemistry is complicated, and a little bit messy -LW |
|
PerlMonks |
Re^5: Opportunity to excelby jethro (Monsignor) |
on Aug 02, 2009 at 16:36 UTC ( [id://785251]=note: print w/replies, xml ) | Need Help?? |
The userid has to be stored in plain text as well. The ONLY function of the seed (or in this case usually called Salt_(cryptography)) is to prevent rainbow (or similar library) attacks. There is nothing intrinsically "vulnerable" about a visible random seed/salt
If you replace "userid" with "random seed" in your second paragraph, the sentence is still correct. Your userid scheme is cryptographically nothing but a random seed with much less randomness
In Section
Perl Monks Discussion
|
|