> I read some comments the other day on the list about using hash() to
> store passwords in a database and someone sent a link to a microsoft
> document explaining the security benefits to storing passwords that
> way. In the article, it talked about using a "salt" parameter that
> the hash uses to generate a different hashed result. After looking
> at the CFMX 6.1 documentation, I don't see anything about being able
> to do that. Does anyone know if there is built in functionality for
> this? Or would it just be best to append the salt value to the
> submitted password before doing the hash function?
Just append or prepend the salt to the password.
Jochem
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
