Link Post:Developers: You're (Probably) Doing Passwords Wrong, Too!
An excellent article that explains password security and how we should be storing passwords in the database.
http://threetwelvecreative.com/blog/bid/266517/Developers-You-re-Probably-Doing-Passwords-Wrong-Too via reddit
The only thing I would add (and I did in the comments) is that as an added layer of security you can add a site wide salt that is stored in a file. Even if an attacker gets your database, they realize that you're salting your passwords, and they do a brute force lookup they will still be missing information and won't be able to determine the passwords.
Scott Keck-Warren
Scott is the Director of Technology at WeCare Connect where he strives to provide solutions for his customers needs. He's the father of two and can be found most weekends working on projects around the house with his loving partner.
Top Posts
- Working With Soft Deletes in Laravel (By Example)
- Fixing CMake was unable to find a build program corresponding to "Unix Makefiles"
- Upgrading to Laravel 8.x
- Get The Count of the Number of Users in an AD Group
- Multiple Vagrant VMs in One Vagrantfile
- Fixing the "this is larger than GitHub's recommended maximum file size of 50.00 MB" error
- Changing the Directory Vagrant Stores the VMs In
- Accepting Android SDK Licenses From The OSX Command Line
- Fixing the 'Target class [config] does not exist' Error
- Using Rectangle to Manage MacOS Windows