On 10/13/07, Martin James Cochran <[EMAIL PROTECTED]> wrote: > ... What's wrong with starting > with input SALT || PASSWORD and iterating N times, ....
Shouldn't it be USERID || SALT || PASSWORD to guarantee that if two users choose the same password they get different hashes? It looks to me like this wold make dictionary attacks harder too. -- Sandy Harris, Nanjing, China --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
