Which is the Preferred Method of Storing Passwords In Database?

Question

Omaiz · Answer

Generally, we can use the sha hash of the username, a guide in the web config, and the password, stored as a varchar(40). If they want to brute force/dictionary they'll need to hack the webserver for the guide as well. The username breaks creating a rainbow table across the whole database if they do find the password. If a user wants to change their username, I just reset the password at the same time.System.Web.Security.FormsAuthentication.HashPasswordForStoringInConfigFile(
    username.ToLower().Trim(),
    ConfigurationManager.AppSettings("salt"),
    password
);

Which is the Preferred Method of Storing Passwords In Database

Your comment on this question:

1 answer to this question.

Your answer

Your comment on this answer:

Related Questions In Database

What is the advantage of using "Set NOCOUNT ON" in stored procedure's which are used in ssis packages?

Which operator is used in the query for pattern matching?

What is a Join in terms of database?

What are the different types of keys used in the database?

What is the syntax of USE statement in MySQL?

what is the syntax of OR statement in MySQL?

What is the definition of cardinality in SQL?

What is the definition of cardinality in SQL?

How to select the nth row in a SQL database table?

Which is better database vs. flat files?

Subscribe to our Newsletter, and get personalized recommendations.

TRENDING CERTIFICATION COURSES

TRENDING MASTERS COURSES

COMPANY

WORK WITH US

DOWNLOAD APP

CATEGORIES

CATEGORIES

TRENDING BLOG ARTICLES

TRENDING BLOG ARTICLES