Re: How to send user authentication.

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

Adam Back (aba@dcs.ex.ac.uk)
Thu, 10 Sep 1998 18:54:07 +0100

Next message: Robert Hettinga: "DCSB: Burning the Jolly Roger; Internet Anti-Piracy Technology"
Previous message: Anonymous: "Private Information Retrieval"
Next in thread: Bill Frantz: "Re: How to send user authentication."

Dan Oelke writes:
> Computer system A & B use a traditional username/password system
> of authentication. The passwords are stored in a database as one-way
> hashes with salt. System A will usually have a different salt value
> from System B (seperate databases).

Use a salt derived from the userid?

If you can't do that, if you have no control over the value stored in
the encrypted password field, you can't do it, I don't think.

Adam

Next message: Robert Hettinga: "DCSB: Burning the Jolly Roger; Internet Anti-Piracy Technology"
Previous message: Anonymous: "Private Information Retrieval"
Next in thread: Bill Frantz: "Re: How to send user authentication."

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

All trademarks and copyrights are the property of their respective owners.
Other Directory Sites: SeekWonder | Directory Owners Forum

The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:13:58