gpt4 book ai didi

mysql - MySQL密码功能是否容易受到此影响?

转载 作者:可可西里 更新时间:2023-11-01 07:59:43 25 4
gpt4 key购买 nike

使用 MySQL 的密码功能在数据库中存储密码是否与此一样糟糕?

http://money.cnn.com/2012/06/06/technology/linkedin-password-hack/?source=linkedin

The problem with SHA-1 is that it translates the same text the same way each time. So if your password is "password" and your friend's password is also "password," they will be hashed exactly the same way. That makes reversing the process to uncover the original password significantly easier.

我知道它说的是 SHA-1,但显然任何未加盐的单向哈希都会有同样的问题。

最佳答案

Is storing a password in the DB using MySQL's password function just as bad as this?

是的。

一般来说,您希望使用包含盐的方法,最好对每个用户都是唯一的,并且运行缓慢以防止暴力破解。 Bcrypt是目前推荐的存储密码的方式,因为它有意(相对)创建缓慢。

关于mysql - MySQL密码功能是否容易受到此影响?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/10935794/

25 4 0
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com