doupeng8419 2009-09-25 13:55
浏览 89
已采纳

php安全:使用MD5,SHA1,Salting

Currently Many of my passwords are stored with a mixture of md5's and sha1's however I've just been introduced to salting, and wanted to know the breakdown of what might be the most secure.

I'm certin that a simple md5() can easily be revoked, however what about md5(sha1(md5($var))); Does this combo provide more difficulty, or is more not necessarily better.

Also, is doing 

$var = $var.'t00lup';
md5($var);

more secure than the above, assuming t00lup is a private key?

Is there a better way of doing this instead of just using md5 or just using sha1?

Thanks

  • 写回答

5条回答 默认 最新

  • duanmao1919 2009-09-25 13:56
    关注

    More is not necessarily better. Just use Sha256 and be done with it.

    $var = $var.'t00lup';
$hashedPass=hash('sha256', $var);

    Read more about hash() here.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(4条)

报告相同问题?

悬赏问题

  • ¥15 装 pytorch 的时候出了好多问题,遇到这种情况怎么处理?
  • ¥20 IOS游览器某宝手机网页版自动立即购买JavaScript脚本
  • ¥15 手机接入宽带网线,如何释放宽带全部速度
  • ¥30 关于#r语言#的问题:如何对R语言中mfgarch包中构建的garch-midas模型进行样本内长期波动率预测和样本外长期波动率预测
  • ¥15 ETLCloud 处理json多层级问题
  • ¥15 matlab中使用gurobi时报错
  • ¥15 这个主板怎么能扩出一两个sata口
  • ¥15 不是,这到底错哪儿了😭
  • ¥15 2020长安杯与连接网探
  • ¥15 关于#matlab#的问题:在模糊控制器中选出线路信息,在simulink中根据线路信息生成速度时间目标曲线(初速度为20m/s,15秒后减为0的速度时间图像)我想问线路信息是什么