Of course, if the bad guys get at your DB, then they get the hashes and the asscoiated salts, so its value deteriorates.
Value of salt is that it prevents attacker from creating rainbow tables, if disclosure of salt compromises security of your system it is poorly designed, that's exactly the reason why cleartext passwords are bad. Additional problem with common secret salt is that you can't change it once it leaked.
the more layers there are, the harder it is for them to crack through them all
The harder for you to analyse and verify your security model, the more lines of code, the more bugs.
-
Are you posting in the right place? Check out Where do I post X? to know for sure.
-
Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
<code> <a> <b> <big>
<blockquote> <br /> <dd>
<dl> <dt> <em> <font>
<h1> <h2> <h3> <h4>
<h5> <h6> <hr /> <i>
<li> <nbsp> <ol> <p>
<small> <strike> <strong>
<sub> <sup> <table>
<td> <th> <tr> <tt>
<u> <ul>
-
Snippets of code should be wrapped in
<code> tags not
<pre> tags. In fact, <pre>
tags should generally be avoided. If they must
be used, extreme care should be
taken to ensure that their contents do not
have long lines (<70 chars), in order to prevent
horizontal scrolling (and possible janitor
intervention).
-
Want more info? How to link
or How to display code and escape characters
are good places to start.
|